{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-20T18:34:45.234","vulnerabilities":[{"cve":{"id":"CVE-2024-55594","sourceIdentifier":"psirt@fortinet.com","published":"2025-03-14T17:15:48.653","lastModified":"2025-07-24T20:14:38.823","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"An improper handling of syntactically invalid structure in Fortinet FortiWeb at least vesrions 7.4.0 through 7.4.6 and 7.2.0 through 7.2.10 and 7.0.0 through 7.0.10 allows attacker to execute unauthorized code or commands via HTTP/S crafted requests."},{"lang":"es","value":"Una gestión inadecuada de una estructura sintácticamente no válida en Fortinet FortiWeb al menos en las versiones 7.4.0 a 7.4.6 y 7.2.0 a 7.2.10 y 7.0.0 a 7.0.10 permite a un atacante ejecutar código o comandos no autorizados a través de solicitudes HTTP/S manipuladas."}],"metrics":{"cvssMetricV31":[{"source":"psirt@fortinet.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L","baseScore":5.6,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.2,"impactScore":3.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"psirt@fortinet.com","type":"Secondary","description":[{"lang":"en","value":"CWE-228"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:fortiweb:*:*:*:*:*:*:*:*","versionStartIncluding":"7.0.0","versionEndExcluding":"7.4.7","matchCriteriaId":"FE224E36-1AE2-4F66-9B2F-8D1AD7F8A54A"}]}]}],"references":[{"url":"https://fortiguard.fortinet.com/psirt/FG-IR-23-115","source":"psirt@fortinet.com","tags":["Vendor Advisory"]}]}}]}