CVE-2024-36511
CVSS V2 None
CVSS V3 None
Description
An improperly implemented security check for standard vulnerability [CWE-358] in FortiADC Web Application Firewall (WAF) 7.4.0 through 7.4.4, 7.2 all versions, 7.1 all versions, 7.0 all versions, 6.2 all versions, 6.1 all versions, 6.0 all versions when cookie security policy is enabled may allow an attacker, under specific conditions, to retrieve the initial encrypted and signed cookie protected by the feature
Overview
- CVE ID
- CVE-2024-36511
- Assigner
- fortinet
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-09-10T14:37:47.230Z
- Last Modified Date
- 2024-09-10T17:34:14.478Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://fortiguard.fortinet.com/psirt/FG-IR-22-256 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-36511 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36511 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-09-11 13:19:08 | Added to TrackCVE |