vulnerability

Fortinet FortiClientEMS: CVE-2024-32119: Telemetry protocol authentication is based over VDOM and FCTUID

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:N/AC:M/Au:N/C:N/I:P/A:P)	Jun 10, 2025	Jun 19, 2025	Jul 3, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:P/A:P)

Published

Jun 10, 2025

Added

Jun 19, 2025

Modified

Jul 3, 2025

Description

An improper authentication vulnerability [CWE-287] in FortiClientEMS telemetry protocol may allow an unauthenticated attacker with the knowledge of the targeted user's FCTUID and VDOM to perform operations such as uploading or tagging on behalf of the targeted user via specially crafted TCP requests.

Solution

fortinet-forticlientems-upgrade-latest

References

CWE-1390
CVE-2024-32119
https://attackerkb.com/topics/CVE-2024-32119
URL-https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-32119
URL-https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2024-32119
URL-https://www.fortiguard.com/psirt/FG-IR-23-375

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today