Details of VAR-202508-0742

ID

VAR-202508-0742

CVE

CVE-2024-40588

TITLE

Relative Path Traversal Vulnerability in Multiple Fortinet Products

Trust: 0.8

sources: JVNDB: JVNDB-2024-027173

DESCRIPTION

Multiple relative path traversal vulnerabilities [CWE-23] vulnerability in Fortinet FortiCamera 2.1 all versions, FortiCamera 2.0.0, FortiCamera 1.1 all versions, FortiCamera 1.0 all versions, FortiMail 7.6.0 through 7.6.1, FortiMail 7.4.0 through 7.4.3, FortiMail 7.2 all versions, FortiMail 7.0 all versions, FortiMail 6.4 all versions, FortiNDR 7.6.0 through 7.6.1, FortiNDR 7.4.0 through 7.4.6, FortiNDR 7.2 all versions, FortiNDR 7.1 all versions, FortiNDR 7.0 all versions, FortiRecorder 7.2.0 through 7.2.1, FortiRecorder 7.0.0 through 7.0.4, FortiRecorder 6.4 all versions, FortiVoice 7.0.0 through 7.0.3, FortiVoice 6.4.0 through 6.4.9, FortiVoice 6.0 all versions may allow a privileged attacker to read files from the underlying filesystem via crafted CLI requests. FortiCamera firmware, FortiMail , FortiNDR Multiple Fortinet products, including the following, contain a relative path traversal vulnerability.Information may be obtained

Trust: 1.62

sources: NVD: CVE-2024-40588 // JVNDB: JVNDB-2024-027173

AFFECTED PRODUCTS

vendor:	fortinet	model:	fortindr	scope:	gte	version:	7.6.0	Trust: 1.0
vendor:	fortinet	model:	forticamera	scope:	lte	version:	2.1.4	Trust: 1.0
vendor:	fortinet	model:	fortirecorder	scope:	gte	version:	6.4.0	Trust: 1.0
vendor:	fortinet	model:	fortivoice	scope:	lt	version:	6.4.10	Trust: 1.0
vendor:	fortinet	model:	fortivoice	scope:	gte	version:	7.0.0	Trust: 1.0
vendor:	fortinet	model:	fortimail	scope:	lt	version:	7.6.2	Trust: 1.0
vendor:	fortinet	model:	fortimail	scope:	lt	version:	7.4.4	Trust: 1.0
vendor:	fortinet	model:	fortindr	scope:	lt	version:	7.6.2	Trust: 1.0
vendor:	fortinet	model:	fortivoice	scope:	lt	version:	7.0.5	Trust: 1.0
vendor:	fortinet	model:	fortirecorder	scope:	gte	version:	7.2.0	Trust: 1.0
vendor:	fortinet	model:	fortivoice	scope:	gte	version:	6.0.0	Trust: 1.0
vendor:	fortinet	model:	fortindr	scope:	gte	version:	7.0.0	Trust: 1.0
vendor:	fortinet	model:	fortirecorder	scope:	lt	version:	7.0.5	Trust: 1.0
vendor:	fortinet	model:	fortimail	scope:	gte	version:	7.6.0	Trust: 1.0
vendor:	fortinet	model:	fortimail	scope:	gte	version:	6.4.0	Trust: 1.0
vendor:	fortinet	model:	fortindr	scope:	lt	version:	7.4.7	Trust: 1.0
vendor:	fortinet	model:	forticamera	scope:	gte	version:	2.0.0	Trust: 1.0
vendor:	fortinet	model:	fortirecorder	scope:	lt	version:	7.2.2	Trust: 1.0
vendor:	フォーティネット	model:	fortivoice	scope:	-	version:	-	Trust: 0.8
vendor:	フォーティネット	model:	fortindr	scope:	-	version:	-	Trust: 0.8
vendor:	フォーティネット	model:	forticamera	scope:	-	version:	-	Trust: 0.8
vendor:	フォーティネット	model:	fortimail	scope:	-	version:	-	Trust: 0.8
vendor:	フォーティネット	model:	fortirecorder	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2024-027173 // NVD: CVE-2024-40588

CVSS

SEVERITY

CVSSV2

CVSSV3

psirt@fortinet.com:	CVE-2024-40588
value:	MEDIUM
Trust: 1.0
OTHER:	JVNDB-2024-027173
value:	MEDIUM
Trust: 0.8

psirt@fortinet.com:	CVE-2024-40588
baseSeverity:	MEDIUM
baseScore:	4.4
vectorString:	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	0.8
impactScore:	3.6
version:	3.1
Trust: 1.0
OTHER:	JVNDB-2024-027173
baseSeverity:	MEDIUM
baseScore:	4.4
vectorString:	CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: JVNDB: JVNDB-2024-027173 // NVD: CVE-2024-40588

PROBLEMTYPE DATA

problemtype:	CWE-23	Trust: 1.0
problemtype:	Relative past traversal (CWE-23) [ others ]	Trust: 0.8

sources: JVNDB: JVNDB-2024-027173 // NVD: CVE-2024-40588

PATCH

title:

FG-IR-24-309

url:

https://fortiguard.fortinet.com/psirt/FG-IR-24-309

Trust: 0.8

sources: JVNDB: JVNDB-2024-027173

EXTERNAL IDS

db:	NVD	id:	CVE-2024-40588	Trust: 2.6
db:	JVNDB	id:	JVNDB-2024-027173	Trust: 0.8

sources: JVNDB: JVNDB-2024-027173 // NVD: CVE-2024-40588

REFERENCES

url:	https://fortiguard.fortinet.com/psirt/fg-ir-24-309	Trust: 1.0
url:	https://nvd.nist.gov/vuln/detail/cve-2024-40588	Trust: 0.8

sources: JVNDB: JVNDB-2024-027173 // NVD: CVE-2024-40588

SOURCES

db:	JVNDB	id:	JVNDB-2024-027173
db:	NVD	id:	CVE-2024-40588

LAST UPDATE DATE

2026-01-14T23:31:06.115000+00:00

SOURCES UPDATE DATE

db:	JVNDB	id:	JVNDB-2024-027173	date:	2025-08-15T08:52:00
db:	NVD	id:	CVE-2024-40588	date:	2026-01-14T10:16:02.333

SOURCES RELEASE DATE

db:	JVNDB	id:	JVNDB-2024-027173	date:	2025-08-15T00:00:00
db:	NVD	id:	CVE-2024-40588	date:	2025-08-12T19:15:27.397