How severe is CVE-2025-24471?

CVE-2025-24471 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2025-24471

Name: fortios
Author: fortinet

6.5MEDIUM

An Improper Certificate Validation vulnerability [CWE-295] in FortiOS version 7.6.1 and below, version 7.4.7 and below may allow an EAP verified remote user to connect from FortiClient via revoked cer

Published: 6/10/2025Updated: 7/22/2025

Description

An Improper Certificate Validation vulnerability [CWE-295] in FortiOS version 7.6.1 and below, version 7.4.7 and below may allow an EAP verified remote user to connect from FortiClient via revoked certificate.

AI AnalysisPowered by AI

Affected Products

fortinetfortisase

25.1.39

fortinetfortios

References

https://fortiguard.fortinet.com/psirt/FG-IR-24-544
Vendor Advisory