CVE-2024-23664 - Vulnerability Details - OpenCVE

A URL redirection to untrusted site ('open redirect') in Fortinet FortiAuthenticator version 6.6.0, version 6.5.3 and below, version 6.4.9 and below may allow an attacker to to redirect users to an arbitrary website via a crafted URL.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00246.

Key SSVC decision points have not yet been added.

Vendors	Products
Fortinet	Fortiauthenticator

Configuration 1 [-]

OR	cpe:2.3:a:fortinet:fortiauthenticator::::::::
	cpe:2.3:a:fortinet:fortiauthenticator:6.6.0:::::::*

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2024-21137	A URL redirection to untrusted site ('open redirect') in Fortinet FortiAuthenticator version 6.6.0, version 6.5.3 and below, version 6.4.9 and below may allow an attacker to to redirect users to an arbitrary website via a crafted URL.

Fixes

Solution

Please upgrade to FortiAuthenticator version 6.6.1 or above Please upgrade to FortiAuthenticator version 6.5.4 or above

Workaround

No workaround given by the vendor.

References

Link	Providers
https://fortiguard.fortinet.com/psirt/FG-IR-23-465

History

Sat, 12 Jul 2025 13:45:00 +0000

Type	Values Removed	Values Added
Metrics	epss `{'score': 0.00293}`	epss `{'score': 0.00246}`

Tue, 21 Jan 2025 22:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Fortinet Fortinet fortiauthenticator
CPEs		cpe:2.3:a:fortinet:fortiauthenticator:::::::: cpe:2.3:a:fortinet:fortiauthenticator:6.6.0:::::::*
Vendors & Products		Fortinet Fortinet fortiauthenticator

MITRE

Status: PUBLISHED

Assigner: fortinet

Published: 2024-06-03T09:50:26.151Z

Updated: 2024-08-01T23:06:25.363Z

Reserved: 2024-01-19T08:23:28.612Z

Link: CVE-2024-23664

Vulnrichment

Updated: 2024-08-01T23:06:25.363Z

NVD

Status : Analyzed

Published: 2024-06-03T10:15:12.620

Modified: 2025-01-21T21:53:28.560

Link: CVE-2024-23664

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-23664", "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8", "state": "PUBLISHED", "assignerShortName": "fortinet", "dateReserved": "2024-01-19T08:23:28.612Z", "datePublished": "2024-06-03T09:50:26.151Z", "dateUpdated": "2024-08-01T23:06:25.363Z"}, "containers": {"cna": {"affected": [{"vendor": "Fortinet", "product": "FortiAuthenticator", "defaultStatus": "unaffected", "versions": [{"version": "6.6.0", "status": "affected"}, {"versionType": "semver", "version": "6.5.0", "lessThanOrEqual": "6.5.3", "status": "affected"}, {"versionType": "semver", "version": "6.4.0", "lessThanOrEqual": "6.4.9", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "A URL redirection to untrusted site ('open redirect') in Fortinet FortiAuthenticator version 6.6.0, version 6.5.3 and below, version 6.4.9 and below may allow an attacker to to redirect users to an arbitrary website via a crafted URL."}], "providerMetadata": {"orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8", "shortName": "fortinet", "dateUpdated": "2024-06-03T09:50:26.151Z"}, "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-601", "description": "Execute unauthorized code or commands", "type": "CWE"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"version": "3.1", "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:P/RL:U/RC:C"}}], "solutions": [{"lang": "en", "value": "Please upgrade to FortiAuthenticator version 6.6.1 or above \nPlease upgrade to FortiAuthenticator version 6.5.4 or above \n"}], "references": [{"name": "https://fortiguard.fortinet.com/psirt/FG-IR-23-465", "url": "https://fortiguard.fortinet.com/psirt/FG-IR-23-465"}]}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-23664", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-06-03T17:58:01.387102Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:fortinet:fortiauthenticator:6.4.0:*:*:*:*:*:*:*"], "vendor": "fortinet", "product": "fortiauthenticator", "versions": [{"status": "affected", "version": "6.4.0", "versionType": "semver", "lessThanOrEqual": "6.4.9"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:a:fortinet:fortiauthenticator:6.5.0:*:*:*:*:*:*:*"], "vendor": "fortinet", "product": "fortiauthenticator", "versions": [{"status": "affected", "version": "6.5.0", "versionType": "semver", "lessThanOrEqual": "6.5.3"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:a:fortinet:fortiauthenticator:6.6.0:*:*:*:*:*:*:*"], "vendor": "fortinet", "product": "fortiauthenticator", "versions": [{"status": "affected", "version": "6.6.0"}], "defaultStatus": "unaffected"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:46:14.256Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T23:06:25.363Z"}, "title": "CVE Program Container", "references": [{"name": "https://fortiguard.fortinet.com/psirt/FG-IR-23-465", "url": "https://fortiguard.fortinet.com/psirt/FG-IR-23-465", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://fortiguard.fortinet.com/psirt/FG-IR-23-465", "name": "https://fortiguard.fortinet.com/psirt/FG-IR-23-465", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T23:06:25.363Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-23664", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-06-03T17:58:01.387102Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:fortinet:fortiauthenticator:6.4.0:*:*:*:*:*:*:*"], "vendor": "fortinet", "product": "fortiauthenticator", "versions": [{"status": "affected", "version": "6.4.0", "versionType": "semver", "lessThanOrEqual": "6.4.9"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:a:fortinet:fortiauthenticator:6.5.0:*:*:*:*:*:*:*"], "vendor": "fortinet", "product": "fortiauthenticator", "versions": [{"status": "affected", "version": "6.5.0", "versionType": "semver", "lessThanOrEqual": "6.5.3"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:a:fortinet:fortiauthenticator:6.6.0:*:*:*:*:*:*:*"], "vendor": "fortinet", "product": "fortiauthenticator", "versions": [{"status": "affected", "version": "6.6.0"}], "defaultStatus": "unaffected"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-03T18:01:33.967Z"}}], "cna": {"metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:P/RL:U/RC:C", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "Fortinet", "product": "FortiAuthenticator", "versions": [{"status": "affected", "version": "6.6.0"}, {"status": "affected", "version": "6.5.0", "versionType": "semver", "lessThanOrEqual": "6.5.3"}, {"status": "affected", "version": "6.4.0", "versionType": "semver", "lessThanOrEqual": "6.4.9"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "Please upgrade to FortiAuthenticator version 6.6.1 or above \nPlease upgrade to FortiAuthenticator version 6.5.4 or above \n"}], "references": [{"url": "https://fortiguard.fortinet.com/psirt/FG-IR-23-465", "name": "https://fortiguard.fortinet.com/psirt/FG-IR-23-465"}], "descriptions": [{"lang": "en", "value": "A URL redirection to untrusted site ('open redirect') in Fortinet FortiAuthenticator version 6.6.0, version 6.5.3 and below, version 6.4.9 and below may allow an attacker to to redirect users to an arbitrary website via a crafted URL."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-601", "description": "Execute unauthorized code or commands"}]}], "providerMetadata": {"orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8", "shortName": "fortinet", "dateUpdated": "2024-06-03T09:50:26.151Z"}}}, "cveMetadata": {"cveId": "CVE-2024-23664", "state": "PUBLISHED", "dateUpdated": "2024-08-01T23:06:25.363Z", "dateReserved": "2024-01-19T08:23:28.612Z", "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8", "datePublished": "2024-06-03T09:50:26.151Z", "assignerShortName": "fortinet"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:fortinet:fortiauthenticator:*:*:*:*:*:*:*:*", "matchCriteriaId": "7B5E316E-C98F-4090-9AEB-685E7D9EBD94", "versionEndExcluding": "6.5.4", "versionStartIncluding": "6.4.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortiauthenticator:6.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "17E99B35-4807-47F3-9701-2540E93E47A2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A URL redirection to untrusted site ('open redirect') in Fortinet FortiAuthenticator version 6.6.0, version 6.5.3 and below, version 6.4.9 and below may allow an attacker to to redirect users to an arbitrary website via a crafted URL."}, {"lang": "es", "value": "Una redirecci\u00f3n de URL a un sitio que no es de confianza (\"redirecci\u00f3n abierta\") en Fortinet FortiAuthenticator versi\u00f3n 6.6.0, versi\u00f3n 6.5.3 e inferiores, versi\u00f3n 6.4.9 e inferiores puede permitir a un atacante redirigir a los usuarios a un sitio web arbitrario a trav\u00e9s de una URL manipulada."}], "id": "CVE-2024-23664", "lastModified": "2025-01-21T21:53:28.560", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "psirt@fortinet.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-06-03T10:15:12.620", "references": [{"source": "psirt@fortinet.com", "tags": ["Vendor Advisory"], "url": "https://fortiguard.fortinet.com/psirt/FG-IR-23-465"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://fortiguard.fortinet.com/psirt/FG-IR-23-465"}], "sourceIdentifier": "psirt@fortinet.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-601"}], "source": "psirt@fortinet.com", "type": "Secondary"}]}