Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortiadc vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-41673
An improper authorization vulnerability [CWE-285] in Fortinet FortiADC version 7.4.0 and prior to 7.2.2 may allow a low privileged user to read or backup the full system configuration via HTTP or HTTPS requests.
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc 7.2.0
Fortinet Fortiadc 7.1.1
Fortinet Fortiadc 7.1.2
Fortinet Fortiadc 7.4.0
9.1
CVSSv3
CVE-2023-25603
A permissive cross-domain policy with untrusted domains vulnerability in Fortinet FortiADC 7.1.0 - 7.1.1, FortiDDoS-F 6.3.0 - 6.3.4 and 6.4.0 - 6.4.1 allow an unauthorized malicious user to carry out privileged actions and retrieve sensitive information via crafted web requests.
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc 7.1.1
Fortinet Fortiddos-f 6.4.0
Fortinet Fortiddos-f 6.4.1
Fortinet Fortiddos-f
6.7
CVSSv3
CVE-2023-29177
Multiple buffer copy without checking size of input ('classic buffer overflow') vulnerabilities [CWE-120] in FortiADC version 7.2.0 and prior to 7.1.2 & FortiDDoS-F version 6.5.0 and prior to 6.4.1 allows a privileged malicious user to execute arbitrary code or comm...
Fortinet Fortiadc 7.2.0
Fortinet Fortiadc
Fortinet Fortiadc 7.0.0
Fortinet Fortiadc 6.0.0
Fortinet Fortiadc 5.3.0
Fortinet Fortiadc 5.4.0
Fortinet Fortiadc 6.1.0
Fortinet Fortiadc 5.2.0
Fortinet Fortiadc 6.2.0
Fortinet Fortiddos-f
Fortinet Fortiddos-f 6.5.0
Fortinet Fortiddos-f 6.3.0
Fortinet Fortiddos-f 6.2.0
8.8
CVSSv3
CVE-2023-26205
An improper access control vulnerability [CWE-284] in FortiADC automation feature 7.1.0 up to and including 7.1.2, 7.0 all versions, 6.2 all versions, 6.1 all versions may allow an authenticated low-privileged malicious user to escalate their privileges to super_admin via a speci...
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc 7.1.1
Fortinet Fortiadc 7.1.2
7.8
CVSSv3
CVE-2023-25607
An improper neutralization of special elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78 ] in FortiManager 7.2.0 up to and including 7.2.2, 7.0.0 up to and including 7.0.7, 6.4.0 up to and including 6.4.11, 6.2 all versions, 6.0 all versions, ...
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
Fortinet Fortimanager 7.2.0
Fortinet Fortianalyzer
Fortinet Fortianalyzer 7.2.1
Fortinet Fortimanager 7.2.1
Fortinet Fortimanager
Fortinet Fortianalyzer 7.2.2
Fortinet Fortimanager 7.2.2
8.8
CVSSv3
CVE-2022-35849
An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in the management interface of FortiADC 7.1.0 up to and including 7.1.1, 7.0.0 up to and including 7.0.3, 6.2.0 up to and including 6.2.5 and 6.1.0 all versions may allow an authenticated ...
Fortinet Fortiadc
7.8
CVSSv3
CVE-2023-26210
Multiple improper neutralization of special elements used in an os command ('OS Command Injection') vulnerabilties [CWE-78] in Fortinet FortiADCManager version 7.1.0 and prior to 7.0.0, FortiADC version 7.2.0 and prior to 7.1.2 allows a local authenticated malicious use...
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc 7.2.0
Fortinet Fortiadc 7.1.1
Fortinet Fortiadc 7.1.2
Fortinet Fortiadc Manager 7.1.0
Fortinet Fortiadc Manager 7.0.0
Fortinet Fortiadc Manager 6.2.1
Fortinet Fortiadc Manager 6.2.0
Fortinet Fortiadc Manager 5.2.0
Fortinet Fortiadc Manager 5.2.1
Fortinet Fortiadc Manager 5.3.0
Fortinet Fortiadc Manager 5.4.0
Fortinet Fortiadc Manager 6.0.0
Fortinet Fortiadc Manager 6.1.0
7.8
CVSSv3
CVE-2023-28000
An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in FortiADC CLI 7.1.0, 7.0.0 up to and including 7.0.3, 6.2.0 up to and including 6.2.4, 6.1 all versions, 6.0 all versions may allow a local and authenticated malicious user to execute un...
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
7.1
CVSSv3
CVE-2023-27993
A relative path traversal [CWE-23] in Fortinet FortiADC version 7.2.0 and prior to 7.1.1 allows a privileged malicious user to delete arbitrary directories from the underlying file system via crafted CLI commands.
Fortinet Fortiadc
Fortinet Fortiadc 7.2.0
7.8
CVSSv3
CVE-2023-27999
An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in FortiADC 7.2.0, 7.1.0 up to and including 7.1.1 may allow an authenticated malicious user to execute unauthorized commands via specifically crafted arguments to existing commands.
Fortinet Fortiadc
Fortinet Fortiadc 7.2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »