THREAT OPS › CVEs › CVE-2024-55591
CVE-2024-55591 — Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability
Fortinet FortiOS and FortiProxy contain an authentication bypass vulnerability that may allow an unauthenticated, remote attacker to gain super-admin privileges via crafted requests to Node.js websocket module.
Vulnerability details
- Affected productsFortiOS and FortiProxy
- KEV remediation due2025-01-21
Exploiting threat actors
- AkiraG1024