Detections
Analytics

Fortinet Fortigate Authentication bypass in Node.js websocket module and CSF requests (FG-IR-24-535)

critical Nessus Plugin ID 214072

Language:

Version 1.4

Feb 12, 2025, 1:58 AM

  • CVE (set "CVE" coverage to "CVE-2024-55591,CVE-2025-24472")
  • CVSS metrics ("Cvssv4 score" set to 0.0)
  • CVSSv2 severity (based on None, severity decreased from "High" to "Low")
  • Plugin metadata

Plugin Feed: 202502120158

Version 1.3

Jan 17, 2025, 3:25 PM

  • IAVM reference
  • STIG Severity (set to "I")

Plugin Feed: 202501171525

Version 1.2

Jan 15, 2025, 1:31 AM

  • CISA reference
  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C")
  • CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:F/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "True")
  • Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available")

Plugin Feed: 202501150131

Version 1.1

Jan 14, 2025, 6:27 PM

  • New

Plugin Feed: 202501141827

* Changelogs are generally available for changes made after Nov 1, 2022