CVE-2024-55599

Name of the Vulnerable Software and Affected Versions: FortiOS versions prior to 7.4.8 FortiOS version 7.6.0 FortiOS versions 7.0 and earlier FortiOS versions 6.4 and earlier FortiProxy versions prior to 7.4.9 FortiProxy versions 7.2 and earlier FortiProxy versions 7.0 and earlier FortiProxy version 7.6.1 and earlier

Description: The issue is related to an improperly implemented security check, allowing a remote unauthenticated user to bypass the DNS filter via Apple devices.

Recommendations: For FortiOS version 7.6.0, update to a version that includes the security fix. For FortiOS versions 7.4.7 and below, update to version 7.4.8 or later. For FortiOS versions 7.0 and earlier, update to a version that includes the security fix. For FortiOS versions 6.4 and earlier, update to a version that includes the security fix. For FortiProxy version 7.6.1 and earlier, update to a version that includes the security fix. For FortiProxy versions 7.4.8 and below, update to version 7.4.9 or later. For FortiProxy versions 7.2 and earlier, update to a version that includes the security fix. For FortiProxy versions 7.0 and earlier, update to a version that includes the security fix.