CVSS 3.1 Score 5.9 of 10 (medium)


Published Apr 9, 2024
Updated: Apr 10, 2024


The vulnerability with the CVE ID "CVE-2024-31487" affects Fortinet FortiSandbox versions 4.4.0 through 4.4.4, 4.2.0 through 4.2.6, and several other versions. It is categorized as a "path traversal" vulnerability, potentially leading to information disclosure through crafted HTTP requests. The base severity of this vulnerability is rated as MEDIUM with a score of 5.9 out of 10. The confidentiality impact is rated as HIGH, while the integrity impact is rated as LOW. The exploitability score for this vulnerability is 1.6 out of 10, indicating a relatively low likelihood of successful exploitation. To remediate this vulnerability, organizations should apply the necessary patches or updates provided by Fortinet and ensure that their FortiSandbox appliances are running the latest secure version to mitigate any potential danger posed by this vulnerability.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-31487 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options