← Back to CVE List

CVE-2024-32117

Published: 2024-11-12T19:15Z
Last Modified: 2025-01-21T22:19Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-22] in Fortinet FortiManager version 7.4.0 through 7.4.2 and below 7.2.5, FortiAnalyzer version 7.4.0 through 7.4.2 and below 7.2.5 & FortiAnalyzer-BigData version 7.4.0 and below 7.2.7 allows a privileged attacker to read arbitrary files from the underlying system via crafted HTTP or HTTPs requests. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt