How severe is CVE-2025-24471?

CVE-2025-24471 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2025-24471

Name: fortios
Author: fortinet

6.5MEDIUM

An Improper Certificate Validation vulnerability [CWE-295] in FortiOS version 7.6.1 and below, version 7.4.7 and below may allow an EAP verified remote user to connect from FortiClient via revoked cer

Publicado: 6/10/2025Atualizado: 7/22/2025

Descrição

An Improper Certificate Validation vulnerability [CWE-295] in FortiOS version 7.6.1 and below, version 7.4.7 and below may allow an EAP verified remote user to connect from FortiClient via revoked certificate.

Análise IADesenvolvido por IA

Produtos Afetados

fortinetfortisase

25.1.39

fortinetfortios

Referências

https://fortiguard.fortinet.com/psirt/FG-IR-24-544
Vendor Advisory