### [CVE-2024-26009](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-26009)
![](https://img.shields.io/static/v1?label=Product&message=FortiOS&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=FortiPAM&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=FortiProxy&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=FortiSwitchManager&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=1.0.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=1.1.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=1.2.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=6.0.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=6.2.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=6.4.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=7.0.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=7.2.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=7.4.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Execute%20unauthorized%20code%20or%20commands&color=brightgreen)

### Description

An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet FortiOS version 6.4.0 through 6.4.15	and before 6.2.16, FortiProxy version 7.4.0 through 7.4.2, 7.2.0 through 7.2.8 and before 7.0.15 & FortiPAM before version 1.2.0 allows an unauthenticated attacker to seize control of a managed device via crafted FGFM requests, if the device is managed by a FortiManager, and if the attacker knows that FortiManager's serial number.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/PuddinCat/GithubRepoSpider
- https://github.com/allinsthon/CVE-2024-26009