CVE-2024-52963
CVSS Score
3.5
EPSS Score
0.1%
EPSS Percentile
30th
A out-of-bounds write in Fortinet FortiOS versions 7.6.0, 7.4.0 through 7.4.6, 7.2.0 through 7.2.10, 7.0.0 through 7.0.16, 6.4.0 through 6.4.15 allows attacker to trigger a denial of service via specially crafted packets.
| CWE | CWE-787 |
| Vendor | fortinet |
| Product | fortiproxy |
| Ecosystems | |
| Industries | NetworkingSecurity |
| Published | Jan 14, 2025 |
| Last Updated | Jun 9, 2026 |
Stay Ahead of the Next One
Get instant alerts for fortinet fortiproxy
Be the first to know when new low vulnerabilities affecting fortinet fortiproxy are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L/E:F/RL:W/RC:C Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
Low
Affected Versions
Fortinet / FortiProxy
7.4.0 ≤ 7.4.5 7.2.0 ≤ 7.2.13 7.0.0 ≤ 7.0.20 2.0.0 ≤ 2.0.14
Fortinet / FortiOS
7.6.0 7.4.0 ≤ 7.4.6 7.2.0 ≤ 7.2.10 7.0.0 ≤ 7.0.16 6.4.0 ≤ 6.4.15
Fortinet / FortiPAM
1.4.0 ≤ 1.4.2 1.3.0 ≤ 1.3.1 1.2.0 1.1.0 ≤ 1.1.2 1.0.0 ≤ 1.0.3