CVE-2024-46663 | THREATINT

Description

A stack-buffer overflow vulnerability [CWE-121] in Fortinet FortiMail CLI version 7.6.0 through 7.6.1 and before 7.4.3 allows a privileged attacker to execute arbitrary code or commands via specifically crafted CLI commands.

PUBLISHED Reserved 2024-09-11 | Published 2025-03-11 | Updated 2025-03-12 | Assigner fortinet

MEDIUM: 6.5CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:F/RL:X/RC:C

Problem types

Escalation of privilege

Product status

Default status

unaffected

7.6.0 (semver)

affected

7.4.0 (semver)

affected

7.2.0 (semver)

affected

7.0.0 (semver)

affected

6.4.0 (semver)

affected

References

fortiguard.fortinet.com/psirt/FG-IR-24-331

cve.org (CVE-2024-46663)

nvd.nist.gov (CVE-2024-46663)

Download JSON