How severe is CVE-2025-24471?

CVE-2025-24471 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2025-24471

Name: fortios
Author: fortinet

6.5MEDIUM

An Improper Certificate Validation vulnerability [CWE-295] in FortiOS version 7.6.1 and below, version 7.4.7 and below may allow an EAP verified remote user to connect from FortiClient via revoked cer

Publicado: 6/10/2025Actualizado: 7/22/2025

Descripción

An Improper Certificate Validation vulnerability [CWE-295] in FortiOS version 7.6.1 and below, version 7.4.7 and below may allow an EAP verified remote user to connect from FortiClient via revoked certificate.

Análisis IAImpulsado por IA

Productos Afectados

fortinetfortisase

25.1.39

fortinetfortios

Referencias

https://fortiguard.fortinet.com/psirt/FG-IR-24-544
Vendor Advisory