CVE-2024-54021 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An Improper Neutralization of CRLF Sequences in HTTP Headers ('http response splitting') vulnerability [CWE-113] in Fortinet FortiOS 7.2.0 through 7.6.0, FortiP…
Medium CVSS: 6.5

CVE-2024-54021

An Improper Neutralization of CRLF Sequences in HTTP Headers ('http response splitting') vulnerability [CWE-113] in Fortinet FortiOS 7.2.0 through 7.6.0, FortiProxy 7.2.0 through 7.4.5 may allow a remote unauthenticated attacker to bypass the file filter via crafted HTTP headers.
Vendor
Fortinet
Product
Fortiproxy
CWE
CWE-113
Yayın Tarihi
2025-01-14 14:15:34
Güncelleme
2025-08-08 16:03:42
Source Identifier
psirt@fortinet.com
KEV Date Added
-

Kategoriler

CWE-113 Fortiproxy MEDIUM Fortinet 2025

Referanslar

https://fortiguard.fortinet.com/psirt/FG-IR-24-282