How severe is CVE-2024-36510?

CVE-2024-36510 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2024-36510

Name: fortisoar
Author: fortinet

5.3MEDIUM

An observable response discrepancy vulnerability [CWE-204] in FortiClientEMS 7.4.0, 7.2.0 through 7.2.4, 7.0 all versions, and FortiSOAR 7.5.0, 7.4.0 through 7.4.4, 7.3.0 through 7.3.2, 7.2 all versio

Publicado: 1/14/2025Actualizado: 1/31/2025

Descripción

An observable response discrepancy vulnerability [CWE-204] in FortiClientEMS 7.4.0, 7.2.0 through 7.2.4, 7.0 all versions, and FortiSOAR 7.5.0, 7.4.0 through 7.4.4, 7.3.0 through 7.3.2, 7.2 all versions, 7.0 all versions, 6.4 all versions may allow an unauthenticated attacker to enumerate valid users via observing login request responses.

Análisis IAImpulsado por IA

Productos Afectados

fortinetforticlientems

7.4.0

fortinetfortisoar

7.5.0

Referencias

https://fortiguard.fortinet.com/psirt/FG-IR-24-071
Vendor Advisory