CVE-2024-47575

Vulnerability updated a month ago (2024-11-29T13:57:52.827Z)

Download STIX

Preview STIX

CVE-2024-47575, also known as the "FortiJump" flaw, is a critical vulnerability discovered in FortiManager, a platform used to manage FortiGate firewalls. The software design flaw has been under exploitation in zero-day attacks since June 2024, with over 50 servers reported to be impacted according to cybersecurity firm Mandiant. The vulnerability was publicized through various channels including Google Threat Intelligence, which provided detailed information about the zero-day exploitation of the flaw. Upon identifying the vulnerability, Fortinet, the company behind FortiManager, promptly communicated crucial information and resources to its customers. This was part of their immediate response strategy to mitigate the potential damage caused by the vulnerability. The company's statement was made available to Dark Reading, a leading online resource providing cybersecurity news and information, reflecting their commitment to transparency during this security crisis. In order to address the issue, Fortinet released a patch for the critical vulnerability, thus publicly addressing the problem. Alongside the patch, they updated their security advisory to include additional workarounds and indicators of compromise (IOCs), providing further support for their customers. These actions underscored Fortinet's swift and comprehensive approach to managing the vulnerability and protecting their clients from potential threats.

Description last updated: 2024-11-15T16:15:37.412Z

What's your take? (Question 1 of 5)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Possible Aliases / Cluster overlaps

It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at. Create a free account to see the source evidence for each alias, and help fix any errors.

Alias Description	Votes
Fortijump is a possible alias for CVE-2024-47575. FortiJump, identified as CVE-2024-47575, is a significant vulnerability in Fortinet's FortiManager software. The flaw, which has a CVSS v4 score of 9.8, was first exploited in zero-day attacks starting from June 2024, impacting over 50 servers according to a report by Mandiant. The vulnerability res	3

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Fortinet

Vulnerability

Exploit

Mandiant

Zero Day

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Source Document References

Information about the CVE-2024-47575 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
Pulsedive	2 days ago	Pulsedive Blog \| 2024 In Review
InfoSecurity-magazine	2 months ago	watchTowr Finds New Zero-Day Vulnerability in Fortinet Products
CISA	2 months ago	Fortinet Updates Guidance and Indicators of Compromise following FortiManager Vulnerability Exploitation \| CISA
Checkpoint	2 months ago	28th October – Threat Intelligence Report - Check Point Research
DARKReading	2 months ago	Critical Bug Exploited in Fortinet's Management Console
CISA	2 months ago	CISA Adds One Known Exploited Vulnerability to Catalog \| CISA
Securityaffairs	2 months ago	Security Affairs newsletter Round 495 by Pierluigi Paganini – INTERNATIONAL EDITION
InfoSecurity-magazine	2 months ago	Fortinet Confirms Exploitation of Critical FortiManager Zero-Day
Securityaffairs	2 months ago	FortiJump flaw CVE-2024-47575 has been exploited in zero-day attacks since June 2024
Securityaffairs	2 months ago	U.S. CISA adds Fortinet FortiManager flaw to its Known Exploited Vulnerabilities catalog
Canadian Centre for Cyber Security	2 months ago	Fortinet security advisory (AV24-608) - Canadian Centre for Cyber Security
BankInfoSecurity	2 months ago	Fortinet Discloses Actively Exploited Zero-Day