Back to directory

WRITEUP #395

Two Bytes is Plenty: FortiGate RCE with CVE-2024-21762

RCEOut-of-bounds WriteMemory corruptionPatch diffing

byDylan Pindur

Program

Fortinet

Published

Mar 15, 2024

Added to HackDex

May 11, 2024

Read Full Writeuphttps://www.assetnote.io/resources/research/two-bytes-is-plenty-fortigate-rce-with-cve-2024-21762

▸ RELATED WRITEUPS

4 exploits, 1 bug: exploiting cve-2024-20017 4 different ways

RCEBuffer Overflow

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS

RCEArbitrary file write

Built with ❤️ by Shubham Rawat