Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

fortinet fortiap-u vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2022-30301
A path traversal vulnerability [CWE-22] in FortiAP-U CLI 6.2.0 up to and including 6.2.3, 6.0.0 up to and including 6.0.4, 5.4.0 up to and including 5.4.6 may allow an admin user to delete and access unauthorized files and data via specifically crafted CLI commands.
Fortinet Fortiap-uFortinet Fortiap-u 5.4.0Fortinet Fortiap-u 5.4.3Fortinet Fortiap-u 5.4.4Fortinet Fortiap-u 5.4.5Fortinet Fortiap-u 5.4.6
NA
CVE-2023-36634
An incomplete filtering of one or more instances of special elements vulnerability [CWE-792] in the command line interpreter of FortiAP-U 7.0.0, 6.2.0 up to and including 6.2.5, 6.0 all versions, 5.4 all versions may allow an authenticated malicious user to list and delete arbitr...
Fortinet Fortiap-uFortinet Fortiap-u 7.0.0
NA
CVE-2023-25608
An incomplete filtering of one or more instances of special elements vulnerability [CWE-792] in the command line interpreter of FortiAP-W2 7.2.0 up to and including 7.2.1, 7.0.3 up to and including 7.0.5, 7.0.0 up to and including 7.0.1, 6.4 all versions, 6.2 all versions, 6.0 al...
Fortinet Fortiap-u 7.0.0Fortinet Fortiap-uFortinet FortiapFortinet Fortiap-cFortinet Fortiap-w2
8.5
CVSSv2
CVE-2019-15709
An improper input validation in FortiAP-S/W2 6.2.0 to 6.2.2, 6.0.5 and below, FortiAP-U 6.0.1 and below CLI admin console may allow unauthorized administrators to overwrite system files via specially crafted tcpdump commands in the CLI.
Fortinet Fortiap-sFortinet Fortiap-w2Fortinet Fortiap-u
NA
CVE-2022-29058
An improper neutralization of special elements [CWE-89] used in an OS command vulnerability [CWE-78] in the command line interpreter of FortiAP 6.0.0 up to and including 6.4.7, 7.0.0 up to and including 7.0.3, 7.2.0, FortiAP-S 6.0.0 up to and including 6.4.7, FortiAP-W2 6.0.0 up ...
Fortinet Fortiap-uFortinet Fortiap-w2 7.2.0Fortinet Fortiap-w2Fortinet Fortiap-sFortinet Fortiap 7.2.0Fortinet Fortiap
7.2
CVSSv2
CVE-2019-15708
A system command injection vulnerability in the FortiAP-S/W2 6.2.1, 6.2.0, 6.0.5 and below, FortiAP 6.0.5 and below and FortiAP-U below 6.0.0 under CLI admin console may allow unauthorized administrators to run arbitrary system level commands via specially crafted ifconfig comman...
Fortinet FortiapFortinet Fortiap-sFortinet Fortiap-s 6.2.0Fortinet Fortiap-s 6.2.1Fortinet Fortiap-uFortinet Fortiap-w2Fortinet Fortiap-w2 6.2.0Fortinet Fortiap-w2 6.2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middleCVE-2024-34558CVE-2024-32674CVE-2024-34351XPath injectionCVE-2023-45866CVE-2024-25528CVE-2024-25517path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook