Security Advisory

CVE-2024-36510

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-14 14:09:49
Last updated 2025-01-15 14:51:13
Assigner fortinet
State PUBLISHED

Description

An observable response discrepancy vulnerability [CWE-204] in FortiClientEMS 7.4.0, 7.2.0 through 7.2.4, 7.0 all versions, and FortiSOAR 7.5.0, 7.4.0 through 7.4.4, 7.3.0 through 7.3.2, 7.2 all versions, 7.0 all versions, 6.4 all versions may allow an unauthenticated attacker to enumerate valid users via observing login request responses.