Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortimanager vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-36554
A improper access control in Fortinet FortiManager version 7.4.0, version 7.2.0 up to and including 7.2.3, version 7.0.0 up to and including 7.0.10, version 6.4.0 up to and including 6.4.13, 6.2 all versions allows malicious user to execute unauthorized code or commands via speci...
Fortinet Fortimanager
Fortinet Fortimanager 7.4.0
2 Articles
9.8
CVSSv3
CVE-2015-3613
A vulnerability exists in in FortiManager 5.2.1 and previous versions and 5.0.10 and previous versions in the WebUI FTP backup page
Fortinet Fortimanager
9.8
CVSSv3
CVE-2019-6695
Lack of root file system integrity checking in Fortinet FortiManager VM application images of 6.2.0, 6.0.6 and below may allow an malicious user to implant third-party programs by recreating the image through specific methods.
Fortinet Fortimanager 6.2.0
Fortinet Fortimanager
9.8
CVSSv3
CVE-2015-3616
SQL injection vulnerability in Fortinet FortiManager 5.0.x prior to 5.0.11, 5.2.x prior to 5.2.2 allows remote malicious users to execute arbitrary commands via unspecified parameters.
Fortinet Fortimanager Firmware 5.0.6
Fortinet Fortimanager Firmware 5.0.7
Fortinet Fortimanager Firmware 5.0.2
Fortinet Fortimanager Firmware 5.0.3
Fortinet Fortimanager Firmware 5.0.10
Fortinet Fortimanager Firmware 5.2.0
Fortinet Fortimanager Firmware 5.0.0
Fortinet Fortimanager Firmware 5.0.1
Fortinet Fortimanager Firmware 5.0.8
Fortinet Fortimanager Firmware 5.0.9
Fortinet Fortimanager Firmware 5.0.4
Fortinet Fortimanager Firmware 5.0.5
Fortinet Fortimanager Firmware 5.2.1
9.6
CVSSv3
CVE-2023-41679
An improper access control vulnerability [CWE-284] in FortiManager management interface 7.2.0 up to and including 7.2.2, 7.0.0 up to and including 7.0.7, 6.4.0 up to and including 6.4.11, 6.2 all versions, 6.0 all versions may allow a remote and authenticated attacker with at lea...
Fortinet Fortimanager 7.2.0
Fortinet Fortimanager 7.2.1
Fortinet Fortimanager
Fortinet Fortimanager 7.2.2
8.8
CVSSv3
CVE-2022-22300
A improper handling of insufficient permissions or privileges in Fortinet FortiAnalyzer version 5.6.0 up to and including 5.6.11, FortiAnalyzer version 6.0.0 up to and including 6.0.11, FortiAnalyzer version 6.2.0 up to and including 6.2.9, FortiAnalyzer version 6.4.0 up to and i...
Fortinet Fortimanager
Fortinet Fortianalyzer
8.8
CVSSv3
CVE-2021-24006
An improper access control vulnerability in FortiManager versions 6.4.0 to 6.4.3 may allow an authenticated attacker with a restricted user profile to access the SD-WAN Orchestrator panel via directly visiting its URL.
Fortinet Fortimanager
8.8
CVSSv3
CVE-2019-17654
An Insufficient Verification of Data Authenticity vulnerability in FortiManager 6.2.1, 6.2.0, 6.0.6 and below may allow an unauthenticated malicious user to perform a Cross-Site WebSocket Hijacking (CSWSH) attack.
Fortinet Fortimanager
Fortinet Fortimanager 6.2.0
Fortinet Fortimanager 6.2.1
8.8
CVSSv3
CVE-2015-3611
A Command Injection vulnerability exists in FortiManager 5.2.1 and previous versions and FortiManager 5.0.10 and previous versions via unspecified vectors, which could let a malicious user run systems commands when executing a report.
Fortinet Fortimanager
8.1
CVSSv3
CVE-2023-22642
An improper certificate validation vulnerability [CWE-295] in FortiAnalyzer and FortiManager 7.2.0 up to and including 7.2.1, 7.0.0 up to and including 7.0.5, 6.4.8 up to and including 6.4.10 may allow a remote and unauthenticated malicious user to perform a Man-in-the-Middle att...
Fortinet Fortianalyzer
Fortinet Fortimanager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »