PatchSiren cyber security CVE debrief
CVE-2024-21762 Fortinet CVE debrief
CVE-2024-21762 is a Fortinet FortiOS out-of-bound write vulnerability that CISA added to the Known Exploited Vulnerabilities catalog on 2024-02-09. Because it is listed as known exploited, defenders should treat it as urgent and follow vendor mitigation guidance as soon as possible. CISA also marks it as associated with known ransomware campaign use.
- Vendor
- Fortinet
- Product
- FortiOS
- CVSS
- Unknown
- CISA KEV
- Listed
- Original CVE published
- 2024-02-09
- Original CVE updated
- 2024-02-09
- Advisory published
- 2024-02-09
- Advisory updated
- 2024-02-09
Who should care
Organizations that operate Fortinet FortiOS deployments, especially security and infrastructure teams responsible for perimeter appliances and other production systems that rely on Fortinet devices.
Technical summary
The available source corpus identifies the issue as an out-of-bound write vulnerability in FortiOS. CISA’s KEV entry confirms active exploitation and flags known ransomware campaign use. No additional technical details, affected versions, or impact scope are provided in the supplied sources, so remediation planning should rely on the vendor advisory and CISA guidance.
Defensive priority
Immediate. CISA added this CVE to KEV with a required action to apply vendor mitigations or discontinue use if mitigations are unavailable, and set a 7-day due date from 2024-02-09 to 2024-02-16.
Recommended defensive actions
- Review the Fortinet PSIRT advisory for CVE-2024-21762 and apply all vendor-recommended mitigations.
- Prioritize remediation of any FortiOS instances exposed to untrusted networks or supporting critical services.
- If a mitigated or supported configuration is not available, follow CISA’s guidance to discontinue use of the product until risk is reduced.
- Confirm whether your environment includes any FortiOS assets that fall under the KEV remediation requirement and track completion.
- Monitor Fortinet and CISA advisories for updates, especially if version-specific guidance becomes available.
Evidence notes
This debrief is limited to the supplied corpus and official links. Supported facts come from the CISA KEV metadata and the CVE record context provided here: vendor Fortinet, product FortiOS, vulnerability name 'Fortinet FortiOS Out-of-Bound Write Vulnerability', CISA KEV dateAdded 2024-02-09, dueDate 2024-02-16, and known ransomware campaign use marked 'Known'. The corpus also references the official Fortinet PSIRT advisory URL (FG-IR-24-015) and NVD/CVE records, but no version-specific, exploit, or impact details were used unless present in the supplied metadata.
Official resources
-
CVE-2024-21762 CVE record
CVE.org
-
CVE-2024-21762 NVD detail
NVD
-
CISA Known Exploited Vulnerabilities catalog
CISA - Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
-
Source item URL
cisa_kev
CVE published and recorded on 2024-02-09, the same date it was added to CISA’s KEV catalog in the supplied timeline.