Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2024-36510

An observable response discrepancy vulnerability [CWE-204] in FortiClientEMS 7.4.0, 7.2.0 through 7.2.4, 7.0 all versions, and FortiSOAR 7.5.0, 7.4.0 through 7.4.4, 7.3.0 through 7.3.2, 7.2 all versions, 7.0 all versions, 6.4 all versions may allow an unauthenticated attacker to enumerate valid users via observing login request responses.

  • Published: Jan 14, 2025
  • Updated: May 4, 2025
  • CVE: CVE-2024-36510
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.3
  • AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWEs:

Software From Fixed in
fortinet / fortisoar 6.4.0 7.3.3
fortinet / forticlientems 7.4.0 7.4.0.x
fortinet / forticlientems 7.0.0 7.2.5
fortinet / fortisoar 7.5.0 7.5.0.x
fortinet / fortisoar 7.4.0 7.4.5