CVE-2024-52964: 
Fortinet FortiManager vulnerability analysis and mitigation

An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability [CWE-22] affects Fortinet FortiManager and FortiManager Cloud systems. The vulnerability, identified as CVE-2024-52964, was initially disclosed on August 12, 2025. It impacts multiple versions of FortiManager (versions 7.6.0-7.6.1, 7.4.0-7.4.5, 7.2.0-7.2.9, 7.0.0-7.0.13, and all versions of 6.4 and 6.2) and FortiManager Cloud (versions 7.4.1-7.4.5, 7.2.1-7.2.9, 7.0.1-7.0.13, and all versions of 6.4) (Fortinet Advisory).

The vulnerability is classified as a Path Traversal issue (CWE-22) that allows an authenticated remote attacker to overwrite arbitrary files through specially crafted FGFM requests. The vulnerability has received a CVSS v3.1 base score of 6.5 (Medium) with a vector string of CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H, indicating network accessibility, low attack complexity, high privileges required, and no user interaction needed (NVD).

If exploited, this vulnerability allows attackers to overwrite arbitrary files on the affected systems, potentially leading to high impact on both system integrity and availability. The attack requires high-level privileges but can be executed remotely, potentially causing significant system disruption (Fortinet Advisory).

Fortinet has released patches for affected versions. Users should upgrade FortiManager 7.6 to version 7.6.2 or above, FortiManager 7.4 to version 7.4.6 or above, FortiManager 7.2 to version 7.2.10 or above, and FortiManager 7.0 to version 7.0.14 or above. For FortiManager 6.4 and 6.2, users must migrate to a fixed release. FortiManager Cloud users should upgrade to version 7.4.6 or above for 7.4 versions, and to version 7.2.10 or above for 7.2 versions (Fortinet Advisory).