CVE-2024-46671

MEDIUM

FortiWeb <7.6.2-<7.0.11 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-46671. PoCs published by ixec-lab.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2024-46671, targeting FortiWeb systems. The exploit deletes widgets and creates a new admin account with no password after a reboot, leveraging authentication bypass and arbitrary account deletion vulnerabilities.

Description

An Incorrect User Management vulnerability [CWE-286] in FortiWeb version 7.6.2 and below, version 7.4.6 and below, version 7.2.10 and below, version 7.0.11 and below widgets dashboard may allow an authenticated attacker with at least read-only admin permission to perform operations on the dashboard of other administrators via crafted requests.

Exploits (1)

nomisec WORKING POC
by ixec-lab · poc
https://github.com/ixec-lab/fortinet-cve-2024-46671

This repository contains a functional exploit for CVE-2024-46671, targeting FortiWeb systems. The exploit deletes widgets and creates a new admin account with no password after a reboot, leveraging authentication bypass and arbitrary account deletion vulnerabilities.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: FortiWeb (versions with CONFIG_BUILD_NUMBER <= 638 and CONFIG_MAJOR_NUM <= 7)
Auth required
Prerequisites: valid credentials for initial authentication · target system must be vulnerable (FortiWeb with specific build numbers)
mistral-large-3 · analyzed Jun 08, 2026 Full analysis →

References (1)

Core 1
Core References

Scores

CVSS v3 6.2
EPSS 0.0042
EPSS Percentile 34.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-286
Status published
Products (1)
fortinet/fortiweb 7.0.0 - 7.2.11
Published Apr 08, 2025
Tracked Since Feb 18, 2026