What is CVE-2024-46667?

CVE-2024-46667 is a medium-severity vulnerability in Fortinet Fortisiem, classified under Allocation of Resources Without Limits or Throttling. CVSS score: 6.9/10. Published 2025-01-14.

How severe is CVE-2024-46667?

Medium severity. CVSS v3 base score is 6.9 out of 10.

Resource exhaustion in Fortinet Fortisiem

CVE-2024-46667

A allocation of resources without limits or throttling in Fortinet FortiSIEM 5.3 all versions, 5.4 all versions, 6.x all versions, 7.0 all versions, and 7.1.0 through 7.1.5 may allow an attacker to deny valid TLS traffic via consuming all…

EPSS: 0.006 (70.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.9 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:W/RC:C.

Affected products

Fortinet Fortisiem — versions 7.1.0, 7.0.0, 6.7.0

Weakness classification (CWE)

CWE-770 — Allocation of Resources Without Limits or Throttling

References

https://fortiguard.fortinet.com/psirt/FG-IR-24-164

Frequently asked questions

What is CVE-2024-46667?: CVE-2024-46667 is a medium-severity vulnerability in Fortinet Fortisiem, classified under Allocation of Resources Without Limits or Throttling. CVSS score: 6.9/10. Published 2025-01-14.
How severe is CVE-2024-46667?: Medium severity. CVSS v3 base score is 6.9 out of 10.