How severe is CVE-2025-24471?

CVE-2025-24471 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2025-24471

Name: fortios
Author: fortinet

6.5MEDIUM

An Improper Certificate Validation vulnerability [CWE-295] in FortiOS version 7.6.1 and below, version 7.4.7 and below may allow an EAP verified remote user to connect from FortiClient via revoked cer

Опубликовано: 6/10/2025Обновлено: 7/22/2025

Описание

An Improper Certificate Validation vulnerability [CWE-295] in FortiOS version 7.6.1 and below, version 7.4.7 and below may allow an EAP verified remote user to connect from FortiClient via revoked certificate.

ИИ-АнализНа базе ИИ

Затронутые продукты

fortinetfortisase

25.1.39

fortinetfortios

Ссылки

https://fortiguard.fortinet.com/psirt/FG-IR-24-544
Vendor Advisory