Vulnerability Database

289,871

Total vulnerabilities in the database

CVE-2024-36505

An improper access control vulnerability [CWE-284] in FortiOS 7.4.0 through 7.4.3, 7.2.5 through 7.2.7, 7.0.12 through 7.0.14 and 6.4.x may allow an attacker who has already successfully obtained write access to the underlying system (via another hypothetical exploit) to bypass the file integrity checking system.

  • Published: Aug 13, 2024
  • Updated: Aug 23, 2024
  • CVE: CVE-2024-36505
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.5
  • AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
fortinet / fortios 7.4.0 7.4.4
fortinet / fortios 7.0.12 7.0.15
fortinet / fortios 6.4.13 6.4.15.x
fortinet / fortios 7.2.5 7.2.8