How severe is CVE-2024-36510?

CVE-2024-36510 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2024-36510

Name: fortisoar
Author: fortinet

5.3MEDIUM

An observable response discrepancy vulnerability [CWE-204] in FortiClientEMS 7.4.0, 7.2.0 through 7.2.4, 7.0 all versions, and FortiSOAR 7.5.0, 7.4.0 through 7.4.4, 7.3.0 through 7.3.2, 7.2 all versio

Publicado: 1/14/2025Atualizado: 1/31/2025

Descrição

An observable response discrepancy vulnerability [CWE-204] in FortiClientEMS 7.4.0, 7.2.0 through 7.2.4, 7.0 all versions, and FortiSOAR 7.5.0, 7.4.0 through 7.4.4, 7.3.0 through 7.3.2, 7.2 all versions, 7.0 all versions, 6.4 all versions may allow an unauthenticated attacker to enumerate valid users via observing login request responses.

Análise IADesenvolvido por IA

Produtos Afetados

fortinetforticlientems

7.4.0

fortinetfortisoar

7.5.0

Referências

https://fortiguard.fortinet.com/psirt/FG-IR-24-071
Vendor Advisory