CVE-2021-24019
Last modified
CVE-2021-24019 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. An insufficient session expiration vulnerability [CWE- 613] in FortiClientEMS versions 6.4.2 and below, 6.2.8 and below may allow an attacker to reuse the unexpired admin user session IDs to gain admin privileges, should the attacker be able to obtain that session ID (via other, hypothetical attacks). EPSS estimates a 3.84% chance of exploitation in the next 30 days.
Description
An insufficient session expiration vulnerability [CWE- 613] in FortiClientEMS versions 6.4.2 and below, 6.2.8 and below may allow an attacker to reuse the unexpired admin user session IDs to gain admin privileges, should the attacker be able to obtain that session ID (via other, hypothetical attacks)
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Fortinet | Forticlient Endpoint Management Server | < 6.2.9 |
| Fortinet | Forticlient Endpoint Management Server | >= 6.4.0, < 6.4.2 |
References
- https://fortiguard.com/advisory/FG-IR-20-072Vendor Advisory
- https://fortiguard.com/advisory/FG-IR-20-072Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2021-24019?
How severe is CVE-2021-24019?
How do I fix CVE-2021-24019?
Are you affected by CVE-2021-24019?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST