Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortios 5.6.0 vulnerabilities and exploits
(subscribe to this query)
801
VMScore
CVE-2017-17544
A privilege escalation vulnerability in Fortinet FortiOS 6.0.0 to 6.0.6, 5.6.0 to 5.6.10, 5.4 and below allows admin users to elevate their profile to super_admin via restoring modified configurations.
Fortinet Fortios
668
VMScore
CVE-2018-1352
A format string vulnerability in Fortinet FortiOS 5.6.0 allows malicious user to execute unauthorized code or commands via the SSH username variable.
Fortinet Fortios 5.6.0
641
VMScore
CVE-2017-14187
A local privilege escalation and local code execution vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.8, and 5.2 and below versions allows malicious user to execute unauthorized binary program contained on an USB drive plugged into a FortiGate via linking the afore...
Fortinet Fortios
446
VMScore
CVE-2018-13382
An Improper Authorization vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.8 and 5.4.1 to 5.4.10 and FortiProxy 2.0.0, 1.2.0 to 1.2.8, 1.1.0 to 1.1.6, 1.0.0 to 1.0.7 under SSL VPN web portal allows an unauthenticated malicious user to modify the password of an SSL V...
Fortinet Fortios
4 Github repositories
445
VMScore
CVE-2018-13381
A buffer overflow vulnerability in Fortinet FortiOS 6.0.0 up to and including 6.0.4, 5.6.0 up to and including 5.6.7, 5.4 and previous versions versions and FortiProxy 2.0.0, 1.2.8 and previous versions versions under SSL VPN web portal allows a non-authenticated malicious user t...
Fortinet Fortiproxy
Fortinet Fortiproxy 2.0.0
Fortinet Fortios
445
VMScore
CVE-2017-14185
An Information Disclosure vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.8 and 5.2 all versions allows SSL VPN web portal users to access internal FortiOS configuration information (eg:addresses) via specifically crafted URLs inside the SSL-VPN web portal.
Fortinet Fortios
445
VMScore
CVE-2017-3130
An information disclosure vulnerability in Fortinet FortiOS 5.6.0, 5.4.4 and below versions allows malicious user to get FortiOS version info by inspecting FortiOS IKE VendorID packets.
Fortinet Fortios 5.4.2
Fortinet Fortios 5.4.3
Fortinet Fortios 5.4.4
Fortinet Fortios 5.0.0
Fortinet Fortios 5.0.13
Fortinet Fortios 5.0.14
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.1
Fortinet Fortios 5.6.0
Fortinet Fortios 5.4.1
Fortinet Fortios 5.0.1
Fortinet Fortios 5.0.3
Fortinet Fortios 5.0.10
Fortinet Fortios 5.0.12
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.4
Fortinet Fortios 5.2.6
Fortinet Fortios 5.0.5
Fortinet Fortios 5.0.6
Fortinet Fortios 5.0.7
Fortinet Fortios 5.0.8
Fortinet Fortios 5.2.7
435
VMScore
CVE-2017-3132
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and previous versions allows malicious users to Execute unauthorized code or commands via the action input during the activation of a FortiToken.
Fortinet Fortios
1 EDB exploit
435
VMScore
CVE-2017-3133
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and previous versions allows malicious users to execute unauthorized code or commands via the Replacement Message HTML for SSL-VPN.
Fortinet Fortios
1 EDB exploit
383
VMScore
CVE-2021-26092
Failure to sanitize input in the SSL VPN web portal of FortiOS 5.2.10 up to and including 5.2.15, 5.4.0 up to and including 5.4.13, 5.6.0 up to and including 5.6.14, 6.0.0 up to and including 6.0.12, 6.2.0 up to and including 6.2.7, 6.4.0 up to and including 6.4.4; and FortiProxy...
Fortinet Fortiproxy
Fortinet Fortiproxy 2.0.0
Fortinet Fortiproxy 2.0.1
Fortinet Fortios
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »