Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortiadc vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-41673
An improper authorization vulnerability [CWE-285] in Fortinet FortiADC version 7.4.0 and prior to 7.2.2 may allow a low privileged user to read or backup the full system configuration via HTTP or HTTPS requests.
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc 7.2.0
Fortinet Fortiadc 7.1.1
Fortinet Fortiadc 7.1.2
Fortinet Fortiadc 7.4.0
NA
CVE-2023-25603
A permissive cross-domain policy with untrusted domains vulnerability in Fortinet FortiADC 7.1.0 - 7.1.1, FortiDDoS-F 6.3.0 - 6.3.4 and 6.4.0 - 6.4.1 allow an unauthorized malicious user to carry out privileged actions and retrieve sensitive information via crafted web requests.
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc 7.1.1
Fortinet Fortiddos-f 6.4.0
Fortinet Fortiddos-f 6.4.1
Fortinet Fortiddos-f
NA
CVE-2023-29177
Multiple buffer copy without checking size of input ('classic buffer overflow') vulnerabilities [CWE-120] in FortiADC version 7.2.0 and prior to 7.1.2 & FortiDDoS-F version 6.5.0 and prior to 6.4.1 allows a privileged malicious user to execute arbitrary code or comm...
Fortinet Fortiadc 7.2.0
Fortinet Fortiadc
Fortinet Fortiadc 7.0.0
Fortinet Fortiadc 6.0.0
Fortinet Fortiadc 5.3.0
Fortinet Fortiadc 5.4.0
Fortinet Fortiadc 6.1.0
Fortinet Fortiadc 5.2.0
Fortinet Fortiadc 6.2.0
Fortinet Fortiddos-f
Fortinet Fortiddos-f 6.5.0
Fortinet Fortiddos-f 6.3.0
Fortinet Fortiddos-f 6.2.0
NA
CVE-2023-26205
An improper access control vulnerability [CWE-284] in FortiADC automation feature 7.1.0 up to and including 7.1.2, 7.0 all versions, 6.2 all versions, 6.1 all versions may allow an authenticated low-privileged malicious user to escalate their privileges to super_admin via a speci...
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc 7.1.1
Fortinet Fortiadc 7.1.2
NA
CVE-2023-25607
An improper neutralization of special elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78 ] in FortiManager 7.2.0 up to and including 7.2.2, 7.0.0 up to and including 7.0.7, 6.4.0 up to and including 6.4.11, 6.2 all versions, 6.0 all versions, ...
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
Fortinet Fortimanager 7.2.0
Fortinet Fortianalyzer
Fortinet Fortianalyzer 7.2.1
Fortinet Fortimanager 7.2.1
Fortinet Fortimanager
Fortinet Fortianalyzer 7.2.2
Fortinet Fortimanager 7.2.2
NA
CVE-2022-35849
An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in the management interface of FortiADC 7.1.0 up to and including 7.1.1, 7.0.0 up to and including 7.0.3, 6.2.0 up to and including 6.2.5 and 6.1.0 all versions may allow an authenticated ...
Fortinet Fortiadc
NA
CVE-2023-28000
An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in FortiADC CLI 7.1.0, 7.0.0 up to and including 7.0.3, 6.2.0 up to and including 6.2.4, 6.1 all versions, 6.0 all versions may allow a local and authenticated malicious user to execute un...
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
NA
CVE-2023-26210
Multiple improper neutralization of special elements used in an os command ('OS Command Injection') vulnerabilties [CWE-78] in Fortinet FortiADCManager version 7.1.0 and prior to 7.0.0, FortiADC version 7.2.0 and prior to 7.1.2 allows a local authenticated malicious use...
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc 7.2.0
Fortinet Fortiadc 7.1.1
Fortinet Fortiadc 7.1.2
Fortinet Fortiadc Manager 7.1.0
Fortinet Fortiadc Manager 7.0.0
Fortinet Fortiadc Manager 6.2.1
Fortinet Fortiadc Manager 6.2.0
Fortinet Fortiadc Manager 5.2.0
Fortinet Fortiadc Manager 5.2.1
Fortinet Fortiadc Manager 5.3.0
Fortinet Fortiadc Manager 5.4.0
Fortinet Fortiadc Manager 6.0.0
Fortinet Fortiadc Manager 6.1.0
NA
CVE-2023-27999
An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in FortiADC 7.2.0, 7.1.0 up to and including 7.1.1 may allow an authenticated malicious user to execute unauthorized commands via specifically crafted arguments to existing commands.
Fortinet Fortiadc
Fortinet Fortiadc 7.2.0
NA
CVE-2023-27993
A relative path traversal [CWE-23] in Fortinet FortiADC version 7.2.0 and prior to 7.1.1 allows a privileged malicious user to delete arbitrary directories from the underlying file system via crafted CLI commands.
Fortinet Fortiadc
Fortinet Fortiadc 7.2.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »