Vulnerability Database

296,489

Total vulnerabilities in the database

CVE-2024-46662

A improper neutralization of special elements used in a command ('command injection') in Fortinet FortiManager versions 7.4.1 through 7.4.3, FortiManager Cloud versions 7.4.1 through 7.4.3 allows attacker to escalation of privilege via specifically crafted packets

Published: Mar 14, 2025
Updated: May 4, 2025
CVE: CVE-2024-46662
Exploit:

No technical information available.

CWEs:

CWE-77

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
fortinet / fortimanager_cloud	7.4.1	7.4.4
fortinet / fortimanager	7.4.1	7.4.4

https://fortiguard.fortinet.com/psirt/FG-IR-24-222

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo