CVE-2024-46670 is a high-severity vulnerability classified as an Out-of-bounds Read [CWE-125] affecting Fortinet's FortiOS versions 7.6.0, 7.4.4 and below, and 7.2.9 and below. This vulnerability allows an unauthenticated remote attacker to trigger memory consumption, potentially leading to a Denial of Service (DoS) condition through crafted requests.
This vulnerability has a CVSS score of 7.5, indicating a high severity level. The impact on organizations can be significant, as it may disrupt service availability. Given the exploitation status, organizations should prioritize patching immediately to mitigate risks.
Currently, there are no known public exploits for this vulnerability, but the potential for exploitation exists due to the nature of the flaw. Security teams should remain vigilant and ensure that all affected systems are updated to the latest patched versions.
In summary, CVE-2024-46670 represents a substantial risk that organizations using Fortinet FortiOS must address promptly.
The vulnerability was published on January 14, 2025, and has been assigned a high remediation priority.
Organizations using FortiOS should take immediate action to assess their exposure and apply necessary updates to prevent potential service disruptions.
Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.
.webp)