Vulnerability Database

290,020

Total vulnerabilities in the database

CVE-2024-46665

An insertion of sensitive information into sent data vulnerability [CWE-201] in FortiOS 7.6.0, 7.4.0 through 7.4.4 may allow an attacker in a man-in-the-middle position to retrieve the RADIUS accounting server shared secret via intercepting accounting-requests.

  • Published: Jan 14, 2025
  • Updated: May 4, 2025
  • CVE: CVE-2024-46665
  • Severity: Low
  • Exploit:

CVSS v3:

  • Severity: Low
  • Score: 3.7
  • AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

No CWE or OWASP classifications available.

Software From Fixed in
fortinet / fortios 7.6.0 7.6.0.x
fortinet / fortios 7.4.0 7.4.5