{"vulnerability": "cve-2024-4666", "sightings": [{"uuid": "79cae99f-cbe2-497f-9535-a8fdeca06324", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46662", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113827355879730690", "content": "", "creation_timestamp": "2025-01-14T15:13:33.928713Z"}, {"uuid": "e4c4146e-cb1d-45fa-8767-4d684612841a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46667", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113827355879730690", "content": "", "creation_timestamp": "2025-01-14T15:13:33.962640Z"}, {"uuid": "c94e464c-4cd1-4bcb-9a2f-87c0b315c100", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46665", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113827355879730690", "content": "", "creation_timestamp": "2025-01-14T15:13:34.029436Z"}, {"uuid": "3bfd0017-30e0-45ad-8790-d23968f5d2f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46664", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113827473227611627", "content": "", "creation_timestamp": "2025-01-14T15:43:24.028370Z"}, {"uuid": "3842c996-34c4-4a8d-8c07-368859d9a2ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46666", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113827473258068791", "content": "", "creation_timestamp": "2025-01-14T15:43:24.442049Z"}, {"uuid": "b9fa80db-36bb-4a0c-8421-c9c8aa2a6e85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46665", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113827473242592097", "content": "", "creation_timestamp": "2025-01-14T15:43:24.197420Z"}, {"uuid": "29c1bc0d-09f6-4397-8ec6-d048937b4254", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46667", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113827473286850831", "content": "", "creation_timestamp": "2025-01-14T15:43:24.787429Z"}, {"uuid": "8b9cdd0a-87cb-4b5d-a1d6-a0339f101c88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46669", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpgwg4lvl2e", "content": "", "creation_timestamp": "2025-01-14T14:17:32.621206Z"}, {"uuid": "d4aef8b6-cce1-4c76-a40d-b3ada1b8ae7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46667", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpgwbfghh2n", "content": "", "creation_timestamp": "2025-01-14T14:17:27.679229Z"}, {"uuid": "a3b419f1-0d3b-4c8f-9f01-edd18ca8b210", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46668", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113827532288010490", "content": "", "creation_timestamp": "2025-01-14T15:58:25.413720Z"}, {"uuid": "6b3a6e16-2796-40ef-889b-d4335c74ffb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46669", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113827532303083908", "content": "", "creation_timestamp": "2025-01-14T15:58:25.470079Z"}, {"uuid": "a1b5b4a0-d17f-403e-b4b0-3973ca8db256", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46664", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpgvztig22t", "content": "", "creation_timestamp": "2025-01-14T14:17:19.639927Z"}, {"uuid": "0914390a-7619-4cba-88f9-83f7689ba6ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46665", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpgw42mtw2t", "content": "", "creation_timestamp": "2025-01-14T14:17:22.050887Z"}, {"uuid": "0121b133-1842-43de-8e5e-98f8b9a677d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46666", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpgw6cpob2n", "content": "", "creation_timestamp": "2025-01-14T14:17:24.458129Z"}, {"uuid": "1e6e0e59-3b14-46f1-93c2-3d1769525214", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46668", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpgwdoz4f2f", "content": "", "creation_timestamp": "2025-01-14T14:17:30.152118Z"}, {"uuid": "20491bbe-865c-4892-9102-992ced1caad0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46665", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-06", "content": "", "creation_timestamp": "2025-02-13T11:00:00.000000Z"}, {"uuid": "776919c9-0002-4829-8303-2f82bd4ea5b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46669", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-06", "content": "", "creation_timestamp": "2025-02-13T11:00:00.000000Z"}, {"uuid": "26ed680c-2776-469c-b0ab-5462f8d105a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46666", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113985677953599994", "content": "", "creation_timestamp": "2025-02-11T14:16:56.932326Z"}, {"uuid": "75222f9b-1be6-455c-b3c7-1038d8b37d87", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46668", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113985677953599994", "content": "", "creation_timestamp": "2025-02-11T14:16:57.004005Z"}, {"uuid": "2a00b667-7762-468c-a8a4-261c496c46f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46666", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3lhwa5fj6pw2d", "content": "", "creation_timestamp": "2025-02-11T17:55:12.179277Z"}, {"uuid": "77d12090-8ba3-48fd-aba3-04cde5694a20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46668", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3lhwa5fj6pw2d", "content": "", "creation_timestamp": "2025-02-11T17:55:12.245369Z"}, {"uuid": "9b3cb08d-aa5b-4ab5-a4a2-544e814180e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46668", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-06", "content": "", "creation_timestamp": "2025-02-13T11:00:00.000000Z"}, {"uuid": "da58d5c9-7ee6-4152-8aef-f02b403dcb6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46662", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lke2qhkenw2n", "content": "", "creation_timestamp": "2025-03-14T16:46:17.670215Z"}, {"uuid": "c4c28d21-2667-45f4-8f29-6e5151d6fb11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46666", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-06", "content": "", "creation_timestamp": "2025-02-13T11:00:00.000000Z"}, {"uuid": "be5d050e-9ee8-4f19-8525-77a5057e487f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46662", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114161569079957523", "content": "", "creation_timestamp": "2025-03-14T15:48:24.318232Z"}, {"uuid": "f683d286-8658-4499-ba9e-e9a37c56a4ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46664", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1624", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-46664\n\ud83d\udd39 Description: A relative path traversal in Fortinet FortiRecorder [CWE-23] version 7.2.0 through 7.2.1 and before 7.0.4 allows a privileged attacker to read files from the underlying filesystem via crafted HTTP or HTTPs requests.\n\ud83d\udccf Published: 2025-01-14T14:09:40.070Z\n\ud83d\udccf Modified: 2025-01-14T20:54:26.530Z\n\ud83d\udd17 References:\n1. https://fortiguard.fortinet.com/psirt/FG-IR-24-310", "creation_timestamp": "2025-01-14T21:12:04.000000Z"}, {"uuid": "c9c51cd4-5d7d-4de0-9a41-0e875a9bd8d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46662", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114162103566286961", "content": "", "creation_timestamp": "2025-03-14T18:04:18.154587Z"}, {"uuid": "bf4d583e-1ad3-48b9-b2dc-158db6889a45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46663", "type": "seen", "source": "https://t.me/cvedetector/20098", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46663 - Fortinet FortiMail Stack-Buffer Overflow Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-46663 \nPublished : March 11, 2025, 3:15 p.m. | 1\u00a0hour ago \nDescription : A stack-buffer overflow vulnerability [CWE-121] in Fortinet FortiMail CLI version 7.6.0 through 7.6.1 and before 7.4.3 allows a privileged attacker to execute arbitrary code or commands via specifically crafted CLI commands. \nSeverity: 6.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-11T17:37:46.000000Z"}, {"uuid": "d0f34a9f-ad8a-43aa-97b6-20d92a95f24f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46668", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1614", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-46668\n\ud83d\udd39 Description: An allocation of resources without limits or throttling vulnerability [CWE-770] in FortiOS versions 7.4.0 through 7.4.4, versions 7.2.0 through 7.2.8, versions 7.0.0 through 7.0.15, and versions 6.4.0 through 6.4.15 may allow an unauthenticated remote user to consume all system memory via multiple large file uploads.\n\ud83d\udccf Published: 2025-01-14T14:08:59.162Z\n\ud83d\udccf Modified: 2025-01-14T20:55:43.639Z\n\ud83d\udd17 References:\n1. https://fortiguard.fortinet.com/psirt/FG-IR-24-219", "creation_timestamp": "2025-01-14T21:11:26.000000Z"}, {"uuid": "0ee92f21-1d1a-475c-b34d-a76fe0fec6b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46669", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1605", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-46669\n\ud83d\udd39 Description: An\u00a0Integer Overflow or Wraparound vulnerability [CWE-190] in version 7.4.4 and below, version 7.2.10 and below; FortiSASE version 23.4.b FortiOS tenant IPsec IKE service may allow an authenticated attacker to crash the IPsec tunnel via crafted requests, resulting in potential denial of service.\n\ud83d\udccf Published: 2025-01-14T14:08:37.297Z\n\ud83d\udccf Modified: 2025-01-14T20:56:51.902Z\n\ud83d\udd17 References:\n1. https://fortiguard.fortinet.com/psirt/FG-IR-24-267", "creation_timestamp": "2025-01-14T21:10:16.000000Z"}, {"uuid": "b11ed183-4e65-48de-ba4e-597f312683e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46663", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7284", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-46663\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:F/RL:X/RC:C)\n\ud83d\udd39 Description: A stack-buffer overflow vulnerability [CWE-121] in Fortinet FortiMail CLI version 7.6.0 through 7.6.1 and before 7.4.3 allows a privileged attacker to execute arbitrary code or commands via specifically crafted CLI commands.\n\ud83d\udccf Published: 2025-03-11T14:54:31.928Z\n\ud83d\udccf Modified: 2025-03-12T04:00:58.832Z\n\ud83d\udd17 References:\n1. https://fortiguard.fortinet.com/psirt/FG-IR-24-331", "creation_timestamp": "2025-03-12T04:43:17.000000Z"}, {"uuid": "cbb07712-8123-4989-853f-94345c9b10a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46665", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1599", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-46665\n\ud83d\udd39 Description: An insertion of sensitive information into sent data vulnerability [CWE-201] in FortiOS 7.6.0, 7.4.0 through 7.4.4 may allow an attacker in a man-in-the-middle position to retrieve the RADIUS accounting server shared secret via intercepting accounting-requests.\n\ud83d\udccf Published: 2025-01-14T14:08:26.784Z\n\ud83d\udccf Modified: 2025-01-14T20:57:35.579Z\n\ud83d\udd17 References:\n1. https://fortiguard.fortinet.com/psirt/FG-IR-24-326", "creation_timestamp": "2025-01-14T21:09:59.000000Z"}, {"uuid": "4274bfde-98de-48fb-83b9-a28c1cddb87f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46662", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7668", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-46662\n\ud83d\udd25 CVSS Score: 8.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:W/RC:C)\n\ud83d\udd39 Description: A improper neutralization of special elements used in a command ('command injection') in Fortinet FortiManager versions 7.4.1 through 7.4.3, FortiManager Cloud versions 7.4.1 through 7.4.3 allows attacker to escalation of privilege via specifically crafted packets\n\ud83d\udccf Published: 2025-03-14T15:03:27.830Z\n\ud83d\udccf Modified: 2025-03-15T03:55:27.259Z\n\ud83d\udd17 References:\n1. https://fortiguard.fortinet.com/psirt/FG-IR-24-222", "creation_timestamp": "2025-03-15T04:45:21.000000Z"}, {"uuid": "40d3581f-d0bf-45dd-a6f5-5ed2122daf56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46662", "type": "seen", "source": "https://t.me/cvedetector/20291", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46662 - Fortinet FortiManager Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-46662 \nPublished : March 14, 2025, 3:15 p.m. | 15\u00a0minutes ago \nDescription : A improper neutralization of special elements used in a command ('command injection') in Fortinet FortiManager versions 7.4.1 through 7.4.3, FortiManager Cloud versions 7.4.1 through 7.4.3 allows attacker to escalation of privilege via specifically crafted packets \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-14T16:42:22.000000Z"}, {"uuid": "a0202da9-d11a-457a-9498-ded9fe2fc942", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46664", "type": "seen", "source": "Telegram/VjmOjnrpPzFOvRh42vxDCCziIZZBbiRjfCsnRLqmjaWalFPQ", "content": "", "creation_timestamp": "2025-02-01T17:28:11.000000Z"}, {"uuid": "2ee9f50b-15ad-4686-9a5e-87767289d4b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46669", "type": "seen", "source": "https://t.me/cvedetector/15262", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46669 - FortiSASE IKE Service Integer Overflow Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-46669 \nPublished : Jan. 14, 2025, 2:15 p.m. | 21\u00a0minutes ago \nDescription : An\u00a0Integer Overflow or Wraparound vulnerability [CWE-190] in version 7.4.4 and below, version 7.2.10 and below; FortiSASE version 23.4.b FortiOS tenant IPsec IKE service may allow an authenticated attacker to crash the IPsec tunnel via crafted requests, resulting in potential denial of service. \nSeverity: 3.5 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T15:39:47.000000Z"}]}