CVE-2024-46665 Information

Description

An insertion of sensitive information into sent data vulnerability [CWE-201] in FortiOS 7.6.0 7.4.0 through 7.4.4 may allow an attacker in a man-in-the-middle position to retrieve the RADIUS accounting server shared secret via intercepting accounting-requests.

Reference

https://fortiguard.fortinet.com/psirt/FG-IR-24-326