CVE-2024-55599

{"id": "CVE-2024-55599", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "psirt@fortinet.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2025-07-08T15:15:23.870", "references": [{"url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-053", "tags": ["Vendor Advisory"], "source": "psirt@fortinet.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "psirt@fortinet.com", "description": [{"lang": "en", "value": "CWE-358"}]}], "descriptions": [{"lang": "en", "value": "An Improperly Implemented Security Check for Standard vulnerability [CWE-358] in FortiOS version 7.6.0, version 7.4.7 and below, 7.0 all versions, 6.4 all versions and FortiProxy version 7.6.1 and below, version 7.4.8 and below, 7.2 all versions, 7.0 all versions may allow a remote unauthenticated user to bypass the DNS filter via Apple devices."}, {"lang": "es", "value": "Una comprobaci\u00f3n de seguridad implementada incorrectamente para la vulnerabilidad est\u00e1ndar [CWE-358] en FortiOS versi\u00f3n 7.6.0, versi\u00f3n 7.4.7 y anteriores, 7.0 todas las versiones, 6.4 todas las versiones y FortiProxy versi\u00f3n 7.6.1 y anteriores, versi\u00f3n 7.4.8 y anteriores, 7.2 todas las versiones, 7.0 todas las versiones puede permitir que un usuario remoto no autenticado evite el filtro DNS a trav\u00e9s de dispositivos Apple."}], "lastModified": "2025-07-22T16:22:46.130", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:fortinet:fortiproxy:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BE879BBE-A7E4-4F8F-9A64-C83A8A28A4D7", "versionEndExcluding": "7.4.9", "versionStartIncluding": "7.0.0"}, {"criteria": "cpe:2.3:a:fortinet:fortiproxy:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6E32BEB-8804-452C-A054-DD9FFCC8B796", "versionEndExcluding": "7.6.2", "versionStartIncluding": "7.6.0"}, {"criteria": "cpe:2.3:a:fortinet:fortisase:24.4.32:*:*:*:-:*:*:*", "vulnerable": true, "matchCriteriaId": "4D6D03F1-9422-46BF-8D49-743E89336272"}, {"criteria": "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "753664B2-3AE8-499A-9C8A-B7D928439697", "versionEndExcluding": "7.2.11", "versionStartIncluding": "6.4.0"}, {"criteria": "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "26515743-5A9A-4885-A08E-535E4ABE0153", "versionEndExcluding": "7.4.8", "versionStartIncluding": "7.4.0"}, {"criteria": "cpe:2.3:o:fortinet:fortios:7.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "44CE8EE3-D64A-49C8-87D7-C18B302F864A"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@fortinet.com"}