CVE-2024-46665

3.7LOW

An insertion of sensitive information into sent data vulnerability [CWE-201] in FortiOS 7.6.0, 7.4.0 through 7.4.4 may allow an attacker in a man-in-the-middle position to retrieve the RADIUS accounti

Published: 1/14/2025Updated: 1/31/2025
View on NVDView on MITRE

Description

An insertion of sensitive information into sent data vulnerability [CWE-201] in FortiOS 7.6.0, 7.4.0 through 7.4.4 may allow an attacker in a man-in-the-middle position to retrieve the RADIUS accounting server shared secret via intercepting accounting-requests.

AI AnalysisPowered by AI

Affected Products

fortinetfortios
fortinetfortios
7.6.0

References