{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-27779", "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8", "state": "PUBLISHED", "assignerShortName": "fortinet", "dateReserved": "2024-02-26T14:46:31.334Z", "datePublished": "2025-07-18T07:58:23.943Z", "dateUpdated": "2025-07-19T03:55:13.564Z"}, "containers": {"cna": {"affected": [{"vendor": "Fortinet", "product": "FortiSandbox", "cpes": ["cpe:2.3:a:fortinet:fortisandbox:4.4.4:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.4.3:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.4.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.4.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.4.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.2.6:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.2.5:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.2.4:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.2.3:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.2.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.2.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.2.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.0.6:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.0.5:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.0.4:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.0.3:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.0.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:3.2.4:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:3.2.3:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:3.2.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:3.2.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:3.2.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"versionType": "semver", "version": "4.4.0", "lessThanOrEqual": "4.4.4", "status": "affected"}, {"versionType": "semver", "version": "4.2.0", "lessThanOrEqual": "4.2.6", "status": "affected"}, {"versionType": "semver", "version": "4.0.0", "lessThanOrEqual": "4.0.6", "status": "affected"}, {"versionType": "semver", "version": "3.2.0", "lessThanOrEqual": "3.2.4", "status": "affected"}]}, {"vendor": "Fortinet", "product": "FortiIsolator", "cpes": ["cpe:2.3:a:fortinet:fortiisolator:2.4.4:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.4.3:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.4.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.4.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.4.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.3.4:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.3.3:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.3.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.3.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.3.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.2.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.1.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.1.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.1.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:1.2.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:1.2.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:1.2.0:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"versionType": "semver", "version": "2.4.0", "lessThanOrEqual": "2.4.4", "status": "affected"}, {"versionType": "semver", "version": "2.3.0", "lessThanOrEqual": "2.3.4", "status": "affected"}, {"version": "2.2.0", "status": "affected"}, {"versionType": "semver", "version": "2.1.0", "lessThanOrEqual": "2.1.2", "status": "affected"}, {"versionType": "semver", "version": "2.0.0", "lessThanOrEqual": "2.0.1", "status": "affected"}, {"versionType": "semver", "version": "1.2.0", "lessThanOrEqual": "1.2.2", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "An insufficient session expiration vulnerability [CWE-613] in FortiSandbox FortiSandbox version 4.4.4 and below, version 4.2.6 and below, 4.0 all versions, 3.2 all versions and FortiIsolator version 2.4 and below, 2.3 all versions, 2.2 all versions, 2.1 all versions, 2.0 all versions, 1.2 all versions may allow a remote attacker in possession of an admin session cookie to keep using that admin's session even after the admin user was deleted."}], "providerMetadata": {"orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8", "shortName": "fortinet", "dateUpdated": "2025-07-18T07:58:23.943Z"}, "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-613", "description": "Improper access control", "type": "CWE"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"version": "3.1", "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 6.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L/E:P/RL:X/RC:C"}}], "solutions": [{"lang": "en", "value": "Please upgrade to FortiSandbox version 4.4.5 or above \nPlease upgrade to FortiSandbox version 4.2.7 or above \nPlease upgrade to FortiIsolator version 2.4.5 or above"}], "references": [{"name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-035", "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-035"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-07-18T00:00:00+00:00", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3", "id": "CVE-2024-27779"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-19T03:55:13.564Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-27779", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-07-18T13:16:46.846102Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-07-18T13:16:53.596Z"}}], "cna": {"metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L/E:P/RL:X/RC:C", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}}], "affected": [{"cpes": ["cpe:2.3:a:fortinet:fortisandbox:4.4.4:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.4.3:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.4.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.4.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.4.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.2.6:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.2.5:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.2.4:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.2.3:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.2.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.2.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.2.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.0.6:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.0.5:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.0.4:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.0.3:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.0.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:4.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:3.2.4:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:3.2.3:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:3.2.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:3.2.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortisandbox:3.2.0:*:*:*:*:*:*:*"], "vendor": "Fortinet", "product": "FortiSandbox", "versions": [{"status": "affected", "version": "4.4.0", "versionType": "semver", "lessThanOrEqual": "4.4.4"}, {"status": "affected", "version": "4.2.0", "versionType": "semver", "lessThanOrEqual": "4.2.6"}, {"status": "affected", "version": "4.0.0", "versionType": "semver", "lessThanOrEqual": "4.0.6"}, {"status": "affected", "version": "3.2.0", "versionType": "semver", "lessThanOrEqual": "3.2.4"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:a:fortinet:fortiisolator:2.4.4:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.4.3:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.4.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.4.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.4.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.3.4:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.3.3:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.3.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.3.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.3.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.2.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.1.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.1.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.1.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:2.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:1.2.2:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:1.2.1:*:*:*:*:*:*:*", "cpe:2.3:a:fortinet:fortiisolator:1.2.0:*:*:*:*:*:*:*"], "vendor": "Fortinet", "product": "FortiIsolator", "versions": [{"status": "affected", "version": "2.4.0", "versionType": "semver", "lessThanOrEqual": "2.4.4"}, {"status": "affected", "version": "2.3.0", "versionType": "semver", "lessThanOrEqual": "2.3.4"}, {"status": "affected", "version": "2.2.0"}, {"status": "affected", "version": "2.1.0", "versionType": "semver", "lessThanOrEqual": "2.1.2"}, {"status": "affected", "version": "2.0.0", "versionType": "semver", "lessThanOrEqual": "2.0.1"}, {"status": "affected", "version": "1.2.0", "versionType": "semver", "lessThanOrEqual": "1.2.2"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "Please upgrade to FortiSandbox version 4.4.5 or above \nPlease upgrade to FortiSandbox version 4.2.7 or above \nPlease upgrade to FortiIsolator version 2.4.5 or above"}], "references": [{"url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-035", "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-035"}], "descriptions": [{"lang": "en", "value": "An insufficient session expiration vulnerability [CWE-613] in FortiSandbox FortiSandbox version 4.4.4 and below, version 4.2.6 and below, 4.0 all versions, 3.2 all versions and FortiIsolator version 2.4 and below, 2.3 all versions, 2.2 all versions, 2.1 all versions, 2.0 all versions, 1.2 all versions may allow a remote attacker in possession of an admin session cookie to keep using that admin's session even after the admin user was deleted."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-613", "description": "Improper access control"}]}], "providerMetadata": {"orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8", "shortName": "fortinet", "dateUpdated": "2025-07-18T07:58:23.943Z"}}}, "cveMetadata": {"cveId": "CVE-2024-27779", "state": "PUBLISHED", "dateUpdated": "2025-07-19T03:55:13.564Z", "dateReserved": "2024-02-26T14:46:31.334Z", "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8", "datePublished": "2025-07-18T07:58:23.943Z", "assignerShortName": "fortinet"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:fortinet:fortiisolator:*:*:*:*:*:*:*:*", "matchCriteriaId": "5FE46895-BF73-4346-900B-C9A7CD434028", "versionEndExcluding": "2.4.5", "versionStartIncluding": "1.2.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortisandbox:*:*:*:*:*:*:*:*", "matchCriteriaId": "6D8EBB53-DB08-44EA-9FE4-87801ACA2C26", "versionEndExcluding": "4.2.7", "versionStartIncluding": "3.2.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortisandbox:*:*:*:*:*:*:*:*", "matchCriteriaId": "2C77A903-42B3-41D3-BDC6-E138679B5400", "versionEndExcluding": "4.4.5", "versionStartIncluding": "4.4.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An insufficient session expiration vulnerability [CWE-613] in FortiSandbox FortiSandbox version 4.4.4 and below, version 4.2.6 and below, 4.0 all versions, 3.2 all versions and FortiIsolator version 2.4 and below, 2.3 all versions, 2.2 all versions, 2.1 all versions, 2.0 all versions, 1.2 all versions may allow a remote attacker in possession of an admin session cookie to keep using that admin's session even after the admin user was deleted."}, {"lang": "es", "value": "Una vulnerabilidad de expiraci\u00f3n de sesi\u00f3n insuficiente [CWE-613] en FortiSandbox FortiSandbox versi\u00f3n 4.4.4 y anteriores, versi\u00f3n 4.2.6 y anteriores, 4.0 todas las versiones, 3.2 todas las versiones y FortiIsolator versi\u00f3n 2.4 y anteriores, 2.3 todas las versiones, 2.2 todas las versiones, 2.1 todas las versiones, 2.0 todas las versiones, 1.2 todas las versiones puede permitir que un atacante remoto en posesi\u00f3n de una cookie de sesi\u00f3n de administrador siga usando la sesi\u00f3n de ese administrador incluso despu\u00e9s de que el usuario administrador haya sido eliminado."}], "id": "CVE-2024-27779", "lastModified": "2025-07-22T17:07:27.987", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 6.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 5.5, "source": "psirt@fortinet.com", "type": "Secondary"}]}, "published": "2025-07-18T08:15:25.850", "references": [{"source": "psirt@fortinet.com", "tags": ["Vendor Advisory"], "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-035"}], "sourceIdentifier": "psirt@fortinet.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-613"}], "source": "psirt@fortinet.com", "type": "Primary"}]}

{}