CVE-2025-24471 Information

Description

An Improper Certificate Validation vulnerability [CWE-295] in FortiOS version 7.6.1 and below version 7.4.7 and below may allow an EAP verified remote user to connect from FortiClient via revoked certificate.

Reference

https://fortiguard.fortinet.com/psirt/FG-IR-24-544