CVE-2026-24641

low

Fortinet

CVSS v3 Base Score

2.7

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L

Published: March 10, 2026

Last Modified: March 12, 2026

Vendor: Fortinet

Source: NVD

Description

A NULL Pointer Dereference vulnerability [CWE-476] vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.2, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4 all versions, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow an authenticated attacker to crash the HTTP daemon via crafted HTTP requests.

CWE

CWE-476

Affected Products

fortinet fortiweb

References

🔗 fortiguard.fortinet.com

CVE-2026-24641

Vulnerability Report

Description

CWE

Affected Products

References