Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2024-23662

Published: 09/04/2024 Updated: 10/04/2024

Vulnerability Summary

An exposure of sensitive information to an unauthorized actor in Fortinet FortiOS at least version at least 7.4.0 up to and including 7.4.1 and 7.2.0 up to and including 7.2.5 and 7.0.0 up to and including 7.0.15 and 6.4.0 up to and including 6.4.15 allows malicious user to information disclosure via HTTP requests.

Recent Articles

Microsoft squashes SmartScreen security bypass bug exploited in the wild
The Register

Topics Security Off-Prem On-Prem Software Offbeat Special Features Vendor Voice Vendor Voice Resources Plus: Adobe, SAP, Fortinet, VMware, Cisco issue pressing updates

Patch Tuesday Microsoft fixed 149 security flaws in its own products this week, and while Redmond acknowledged one of those vulnerabilities is being actively exploited, we've been told another hole is under attack, too. The bug the IT giant said was being abused in the wild is CVE-2024-26234, described as a proxy driver spoofing vulnerability in Windows. This was reported to Redmond by Christopher Budd of Sophos and is rated 6.7 out of 10 on the CVSS severity scale. Microsoft initially listed it...

Read more...

References

CWE-200https://fortiguard.com/psirt/FG-IR-23-224https://nvd.nist.govhttps://www.theregister.co.uk/2024/04/10/april_patch_tuesday/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671unauthorizedCVE-2024-4776CVE-2024-3407CVE-2024-26026CVE-2024-32888wirelessCVE-2024-4656template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook