CVE-2024-46665

3.7LOW

An insertion of sensitive information into sent data vulnerability [CWE-201] in FortiOS 7.6.0, 7.4.0 through 7.4.4 may allow an attacker in a man-in-the-middle position to retrieve the RADIUS accounti

Опубликовано: 1/14/2025Обновлено: 1/31/2025
Посмотреть на NVDПосмотреть на MITRE

Описание

An insertion of sensitive information into sent data vulnerability [CWE-201] in FortiOS 7.6.0, 7.4.0 through 7.4.4 may allow an attacker in a man-in-the-middle position to retrieve the RADIUS accounting server shared secret via intercepting accounting-requests.

ИИ-АнализНа базе ИИ

Затронутые продукты

fortinetfortios
fortinetfortios
7.6.0

Ссылки