VDB

CISA-2024-23662

CISA-2024-23662 PUBLISHED CVSS 5 MEDIUM

Reported by fortinet · Published April 9, 2024

An exposure of sensitive information to an unauthorized actor in Fortinet FortiOS at least version at least 7.4.0 through 7.4.1 and 7.2.0 through 7.2.5 and 7.0.0 through 7.0.15 and 6.4.0 through 6.4.15 allows attacker to information disclosure via HTTP requests.

Risk Scores

CVSS 3.1
5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:X/RC:X

Affected Products

VendorProductVersions
FortinetFortiOS7.4.0, 7.2.0, 7.0.0
FortinetFortiOS6.4.0, 7.4.0, 7.2.0
fortinetfortios7.0.0, 6.4.0, 7.2.0

Timeline

  • Apr 9, 2024 CVE Published
  • Aug 22, 2024 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›