CVE-2024-47573
published 2025-03-14CVE-2024-47573: An improper validation of integrity check value vulnerability [CWE-354] in FortiNDR version 7.4.2 and below, version 7.2.1 and below, version 7.1.1 and below…
medium6.5CVSS 3.1
AVNACLPRHUINSUCNIHAH
An improper validation of integrity check value vulnerability [CWE-354] in FortiNDR version 7.4.2 and below, version 7.2.1 and below, version 7.1.1 and below, version 7.0.6 and below may allow an authenticated attacker with at least Read/Write permission on system maintenance to install a corrupted firmware image.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortindr | — | — |
| fortinet | fortindr | >= 7.0.0 < 7.2.2 | 7.2.2 |
| fortinet | fortindr | 7.0.0 – 7.0.6 | — |
| fortinet | fortindr | 7.1.0 – 7.1.1 | — |
| fortinet | fortindr | 7.2.0 – 7.2.1 | — |
| fortinet | fortindr | >= 7.4.0 < 7.4.3 | 7.4.3 |
| fortinet | fortindr | 7.4.0 – 7.4.2 | — |