{"id":6142,"date":"2024-02-11T17:17:25","date_gmt":"2024-02-11T16:17:25","guid":{"rendered":"https:\/\/sajberinfo.com\/?p=6142"},"modified":"2024-02-11T17:17:25","modified_gmt":"2024-02-11T16:17:25","slug":"nova-fortinet-ssl-vpn-ranjivost","status":"publish","type":"post","link":"https:\/\/sajberinfo.com\/en\/2024\/02\/11\/nova-fortinet-ssl-vpn-ranjivost\/","title":{"rendered":"Nova Fortinet SSL VPN ranjivost"},"content":{"rendered":"<p><span style=\"font-size: 14pt;\"><em>Fortinet<\/em> <a href=\"https:\/\/www.fortiguard.com\/psirt\/FG-IR-24-015\" target=\"_blank\" rel=\"noopener\">upozorava na novu <em>SSL VPN<\/em> ranjivost<\/a> pri izvr\u0161avanju k\u00f4da na daljinu u <em>FortiOS<\/em> sistemu. Ova ranjivost je mo\u017eda ve\u0107 pod aktivnom eksploatacijom, a kada se uspje\u0161no iskoristi, daljinsko izvr\u0161avanje k\u00f4da mo\u017ee ugroziti integritet osjetljivih podataka i sistema.<\/span><\/p>\n<div id=\"attachment_6143\" style=\"width: 1034px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-6143\" class=\"size-full wp-image-6143\" src=\"https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/02\/Fortinet-SSL-VPN.jpg\" alt=\"Fortinet SSL VPN\" width=\"1024\" height=\"1024\" srcset=\"https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/02\/Fortinet-SSL-VPN.jpg 1024w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/02\/Fortinet-SSL-VPN-300x300.jpg 300w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/02\/Fortinet-SSL-VPN-150x150.jpg 150w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/02\/Fortinet-SSL-VPN-768x768.jpg 768w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/02\/Fortinet-SSL-VPN-12x12.jpg 12w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/02\/Fortinet-SSL-VPN-80x80.jpg 80w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2024\/02\/Fortinet-SSL-VPN-320x320.jpg 320w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><p id=\"caption-attachment-6143\" class=\"wp-caption-text\">Nova Fortinet SSL VPN ranjivost; Source: Bing Image Creator<\/p><\/div>\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_82_2 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Sadr\u017eaj<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #ffffff;color:#ffffff\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #ffffff;color:#ffffff\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/sajberinfo.com\/en\/2024\/02\/11\/nova-fortinet-ssl-vpn-ranjivost\/#FORTINET_RANJIVOST_CVE-2024-21762\">FORTINET RANJIVOST CVE-2024-21762<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/sajberinfo.com\/en\/2024\/02\/11\/nova-fortinet-ssl-vpn-ranjivost\/#AZURIRANJE\">A\u017dURIRANJE<\/a><\/li><\/ul><\/nav><\/div>\n\n<h2><span class=\"ez-toc-section\" id=\"FORTINET_RANJIVOST_CVE-2024-21762\"><\/span><span style=\"font-size: 14pt;\"><strong><em>FORTINET<\/em> RANJIVOST <em>CVE-2024-21762<\/em><\/strong><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><span style=\"font-size: 14pt;\"><em>Fortinet <\/em>ranjivost ozna\u010dena kao <a href=\"https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=2024-21762\" target=\"_blank\" rel=\"noopener\"><em>CVE-2024-21762<\/em><\/a> (<em>CVSS<\/em> ocjena: 9.6) je ranjivost pisanja van granica u <em>FortiOS<\/em> sistemu. Ova ranjivost je ozna\u010dena kao kriti\u010dna i potencijalno se ve\u0107 aktivno iskori\u0161tava. <a href=\"https:\/\/sajberinfo.com\/2022\/03\/19\/hakeri-crni-sesiri-epizoda-3\/\" target=\"_blank\" rel=\"nofollow noopener\">Napada\u010d<\/a> bi mogao da iskoristi ovu ranjivost za izvr\u0161avanje proizvoljnog k\u00f4da ili komandi putem posebno kreiranih <em>HTTP<\/em> zahteva, \u0161to mo\u017ee ugroziti integritet osjetljivih podataka i sistema.<\/span><\/p>\n<p>&nbsp;<\/p>\n<blockquote><p><span style=\"font-size: 14pt;\"><em>\u201cRanjivost pisanja van granica [CWE-787] u FortiOS-u mo\u017ee dozvoliti udaljenom neautorizovanom napada\u010du da izvr\u0161i proizvoljni k\u00f4d ili komandu preko posebno kreiranih HTTP zahteva.\u201c<\/em><\/span><\/p>\n<p style=\"text-align: right;\"><span style=\"font-size: 14pt;\"><em>&#8211; Fortinet &#8211;<\/em><\/span><\/p>\n<\/blockquote>\n<p>&nbsp;<\/p>\n<h2><span class=\"ez-toc-section\" id=\"AZURIRANJE\"><\/span><strong><span style=\"font-size: 14pt;\">A\u017dURIRANJE<\/span><\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><span style=\"font-size: 14pt;\"><em>Fortinet<\/em> sna\u017eno savjetuje korisnicima da onemogu\u0107e <em>SSL VPN<\/em> kao privremeno rje\u0161enje dok se ne primjene a\u017euriranja. Va\u017eno je napomenuti da samo onemogu\u0107avanje veb re\u017eima nije valjano rje\u0161enje. Da bi ispravili ovu ranjivost, <em>Fortinet<\/em> preporu\u010duje a\u017euriranje pogo\u0111enih instanci <em>FortiOS<\/em> sistema na najnoviju verziju kao \u0161to se nalazi u tabeli ispod:<\/span><\/p>\n<p>&nbsp;<\/p>\n<table width=\"0\">\n<thead>\n<tr>\n<td style=\"text-align: center;\" width=\"101\"><strong><span style=\"font-size: 14pt;\">Verzija<\/span><\/strong><\/td>\n<td style=\"text-align: center;\" width=\"137\"><strong><span style=\"font-size: 14pt;\">Ugro\u017eeno<\/span><\/strong><\/td>\n<td style=\"text-align: center;\" width=\"218\"><strong><span style=\"font-size: 14pt;\">Rije\u0161enje<\/span><\/strong><\/td>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td width=\"101\"><span style=\"font-size: 14pt;\">FortiOS 7.6<\/span><\/td>\n<td style=\"text-align: center;\" width=\"137\"><span style=\"font-size: 14pt;\">Ne uti\u010de<\/span><\/td>\n<td width=\"218\"><span style=\"font-size: 14pt;\">Nije primenljivo<\/span><\/td>\n<\/tr>\n<tr>\n<td width=\"101\"><span style=\"font-size: 14pt;\">FortiOS 7.4<\/span><\/td>\n<td style=\"text-align: center;\" width=\"137\"><span style=\"font-size: 14pt;\">7.4.0 do 7.4.2<\/span><\/td>\n<td width=\"218\"><span style=\"font-size: 14pt;\">Nadogradnja na 7.4.3 ili novije<\/span><\/td>\n<\/tr>\n<tr>\n<td width=\"101\"><span style=\"font-size: 14pt;\">FortiOS 7.2<\/span><\/td>\n<td style=\"text-align: center;\" width=\"137\"><span style=\"font-size: 14pt;\">7.2.0 do 7.2.6<\/span><\/td>\n<td width=\"218\"><span style=\"font-size: 14pt;\">Nadogradnja na 7.2.7 ili novije<\/span><\/td>\n<\/tr>\n<tr>\n<td width=\"101\"><span style=\"font-size: 14pt;\">FortiOS 7.0<\/span><\/td>\n<td style=\"text-align: center;\" width=\"137\"><span style=\"font-size: 14pt;\">7.0.0 do 7.0.13<\/span><\/td>\n<td width=\"218\"><span style=\"font-size: 14pt;\">Nadogradnja na 7.0.14 ili novije<\/span><\/td>\n<\/tr>\n<tr>\n<td width=\"101\"><span style=\"font-size: 14pt;\">FortiOS 6.4<\/span><\/td>\n<td style=\"text-align: center;\" width=\"137\"><span style=\"font-size: 14pt;\">6.4.0 do 6.4.14<\/span><\/td>\n<td width=\"218\"><span style=\"font-size: 14pt;\">Nadogradnja na 6.4.15 ili novije<\/span><\/td>\n<\/tr>\n<tr>\n<td width=\"101\"><span style=\"font-size: 14pt;\">FortiOS 6.2<\/span><\/td>\n<td style=\"text-align: center;\" width=\"137\"><span style=\"font-size: 14pt;\">6.2.0 do 6.2.15<\/span><\/td>\n<td width=\"218\"><span style=\"font-size: 14pt;\">Nadogradnja na 6.2.16 ili novije<\/span><\/td>\n<\/tr>\n<tr>\n<td width=\"101\"><span style=\"font-size: 14pt;\">FortiOS 6.0<\/span><\/td>\n<td style=\"text-align: center;\" width=\"137\"><span style=\"font-size: 14pt;\">6.0 sve verzije<\/span><\/td>\n<td width=\"218\"><span style=\"font-size: 14pt;\">Pre\u0111ite na fiksno izdanje<\/span><\/td>\n<\/tr>\n<tr>\n<td width=\"101\"><span style=\"font-size: 14pt;\">FortiProxy 7.4<\/span><\/td>\n<td style=\"text-align: center;\" width=\"137\"><span style=\"font-size: 14pt;\">7.4.0 do 7.4.2<\/span><\/td>\n<td width=\"218\"><span style=\"font-size: 14pt;\">Nadogradnja na 7.4.3 ili novije<\/span><\/td>\n<\/tr>\n<tr>\n<td width=\"101\"><span style=\"font-size: 14pt;\">FortiProxy 7.2<\/span><\/td>\n<td style=\"text-align: center;\" width=\"137\"><span style=\"font-size: 14pt;\">7.2.0 do 7.2.8<\/span><\/td>\n<td width=\"218\"><span style=\"font-size: 14pt;\">Nadogradnja na 7.2.9 ili novije<\/span><\/td>\n<\/tr>\n<tr>\n<td width=\"101\"><span style=\"font-size: 14pt;\">FortiProxy 7.0<\/span><\/td>\n<td style=\"text-align: center;\" width=\"137\"><span style=\"font-size: 14pt;\">7.0.0 do 7.0.14<\/span><\/td>\n<td width=\"218\"><span style=\"font-size: 14pt;\">Nadogradnja na 7.0.15 ili novije<\/span><\/td>\n<\/tr>\n<tr>\n<td width=\"101\"><span style=\"font-size: 14pt;\">FortiProxy 2.0<\/span><\/td>\n<td style=\"text-align: center;\" width=\"137\"><span style=\"font-size: 14pt;\">2.0.0 do 2.0.13<\/span><\/td>\n<td width=\"218\"><span style=\"font-size: 14pt;\">Nadogradnja na 2.0.14 ili novije<\/span><\/td>\n<\/tr>\n<tr>\n<td width=\"101\"><span style=\"font-size: 14pt;\">FortiProxy 1.2<\/span><\/td>\n<td style=\"text-align: center;\" width=\"137\"><span style=\"font-size: 14pt;\">1.2 sve verzije<\/span><\/td>\n<td width=\"218\"><span style=\"font-size: 14pt;\">Pre\u0111ite na fiksno izdanje<\/span><\/td>\n<\/tr>\n<tr>\n<td width=\"101\"><span style=\"font-size: 14pt;\">FortiProxy 1.1<\/span><\/td>\n<td style=\"text-align: center;\" width=\"137\"><span style=\"font-size: 14pt;\">1.1 sve verzije<\/span><\/td>\n<td width=\"218\"><span style=\"font-size: 14pt;\">Pre\u0111ite na fiksno izdanje<\/span><\/td>\n<\/tr>\n<tr>\n<td width=\"101\"><span style=\"font-size: 14pt;\">FortiProxy 1.0<\/span><\/td>\n<td style=\"text-align: center;\" width=\"137\"><span style=\"font-size: 14pt;\">1.0 sve verzije<\/span><\/td>\n<td width=\"218\"><span style=\"font-size: 14pt;\">Pre\u0111ite na fiksno izdanje<\/span><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p><span style=\"font-size: 14pt;\"><em>Fortinet<\/em> je upozorio da napada\u010di aktivno iskori\u0161\u0107avaju ovu ranjivost. Zna\u010dajno je da eksploatacija nije ograni\u010dena na teorijske napade, ve\u0107 se de\u0161ava u scenarijima iz stvarnog sveta. Kompanija ne daje nikakve detalje o\u00a0 tome kako se ranjivost iskori\u0161tava ili ko je otkrio ranjivost.<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Fortinet upozorava na novu SSL VPN ranjivost pri izvr\u0161avanju k\u00f4da na daljinu u FortiOS sistemu. Ova ranjivost je mo\u017eda ve\u0107 pod aktivnom eksploatacijom, a kada se uspje\u0161no iskoristi, daljinsko izvr\u0161avanje k\u00f4da mo\u017ee ugroziti integritet&#46;&#46;&#46;<\/p>","protected":false},"author":1,"featured_media":6143,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[762,285,295,761,78],"class_list":["post-6142","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-hronike","tag-cve-2024-21762","tag-fortinet","tag-fortios","tag-ssl","tag-vpn"],"_links":{"self":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/posts\/6142","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/comments?post=6142"}],"version-history":[{"count":0,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/posts\/6142\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/media\/6143"}],"wp:attachment":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/media?parent=6142"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/categories?post=6142"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/tags?post=6142"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}