Exploit for Use of Externally-Controlled Format String in Fortinet Fortiproxy CVE-2024-23113

Name: Exploit for Use of Externally-Controlled Format String in Fortinet Fortiproxy CVE-2024-23113
Rating: 5 (131 reviews)

2025-05-02 | CVSS 9.8

## https://sploitus.com/exploit?id=7A1E35C8-E3C4-5BBB-9A2D-FC67F86BDD5C
# CVE-2024-23113
This python scripts searches a client list to see if their FortiGate device is vulnerable to this CVE.

## How To Use
1) Create a "clients.txt" file, and import a list of all your clients IP addresses.
2) Create a "vul.txt" file. This will be used to export the scripts findings.
3) Run scan-clients.py.

## Release of Liability
This python script is to be used for internal use only. It should only be used to scan your IP space or your client's IP space. Any abuse of this script is not the responsibility of the writer or it's associates.