CVE-2024-46669

Name of the Vulnerable Software and Affected Versions: FortiOS versions 7.4.4 and below FortiOS versions 7.2.10 and below FortiSASE version 23.4.b

Description: The issue is related to an Integer Overflow or Wraparound vulnerability. This vulnerability may allow an authenticated attacker to crash the IPsec tunnel via crafted requests, resulting in a potential denial of service. The FortiOS tenant IPsec IKE service is affected.

Recommendations: For FortiOS versions 7.4.4 and below, consider disabling the IPsec IKE service until a patch is available. For FortiOS versions 7.2.10 and below, restrict access to the IPsec IKE service to minimize the risk of exploitation. For FortiSASE version 23.4.b, avoid using crafted requests in the IPsec IKE service until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.