Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortios 6.0.0 vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2017-17544
A privilege escalation vulnerability in Fortinet FortiOS 6.0.0 to 6.0.6, 5.6.0 to 5.6.10, 5.4 and below allows admin users to elevate their profile to super_admin via restoring modified configurations.
Fortinet Fortios
6.8
CVSSv2
CVE-2021-36173
A heap-based buffer overflow in the firmware signature verification function of FortiOS versions 7.0.1, 7.0.0, 6.4.0 up to and including 6.4.6, 6.2.0 up to and including 6.2.9, and 6.0.0 up to and including 6.0.13 may allow an malicious user to execute arbitrary code via speciall...
Fortinet Fortios
Fortinet Fortios 7.0.0
Fortinet Fortios 7.0.1
5
CVSSv2
CVE-2018-13379
An Improper Limitation of a Pathname to a Restricted Directory ("Path Traversal") in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.3 to 5.6.7 and 5.4.6 to 5.4.12 and FortiProxy 2.0.0, 1.2.0 to 1.2.8, 1.1.0 to 1.1.6, 1.0.0 to 1.0.7 under SSL VPN web portal allows an unauthenticat...
Fortinet Fortios
2 EDB exploits
21 Github repositories
9 Articles
5
CVSSv2
CVE-2018-13381
A buffer overflow vulnerability in Fortinet FortiOS 6.0.0 up to and including 6.0.4, 5.6.0 up to and including 5.6.7, 5.4 and previous versions versions and FortiProxy 2.0.0, 1.2.8 and previous versions versions under SSL VPN web portal allows a non-authenticated malicious user t...
Fortinet Fortiproxy
Fortinet Fortiproxy 2.0.0
Fortinet Fortios
5
CVSSv2
CVE-2018-13382
An Improper Authorization vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.8 and 5.4.1 to 5.4.10 and FortiProxy 2.0.0, 1.2.0 to 1.2.8, 1.1.0 to 1.1.6, 1.0.0 to 1.0.7 under SSL VPN web portal allows an unauthenticated malicious user to modify the password of an SSL V...
Fortinet Fortios
4 Github repositories
5
CVSSv2
CVE-2018-13366
An information disclosure vulnerability in Fortinet FortiOS 6.0.1, 5.6.7 and below allows malicious user to reveals serial number of FortiGate via hostname field defined in connection control setup packets of PPTP protocol.
Fortinet Fortios
Fortinet Fortios 6.0.1
Fortinet Fortios 6.0.0
4.3
CVSSv2
CVE-2021-43081
An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiOS version 7.0.3 and below, 6.4.8 and below, 6.2.10 and below, 6.0.14 to 6.0.0. and in FortiProxy version 7.0.1 and below, 2.0.7 to 2.0.0 web filter override form may allow an unauthenti...
Fortinet Fortios
Fortinet Fortiproxy
4.3
CVSSv2
CVE-2021-26092
Failure to sanitize input in the SSL VPN web portal of FortiOS 5.2.10 up to and including 5.2.15, 5.4.0 up to and including 5.4.13, 5.6.0 up to and including 5.6.14, 6.0.0 up to and including 6.0.12, 6.2.0 up to and including 6.2.7, 6.4.0 up to and including 6.4.4; and FortiProxy...
Fortinet Fortiproxy
Fortinet Fortiproxy 2.0.0
Fortinet Fortiproxy 2.0.1
Fortinet Fortios
4.3
CVSSv2
CVE-2019-5586
A reflected Cross-Site-Scripting (XSS) vulnerability in Fortinet FortiOS 5.2.0 to 5.6.10, 6.0.0 to 6.0.4 under SSL VPN web portal may allow an malicious user to execute unauthorized malicious script code via the "param" parameter of the error process HTTP requests.
Fortinet Fortios
4.3
CVSSv2
CVE-2019-5588
A reflected Cross-Site-Scripting (XSS) vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4 under SSL VPN web portal may allow an malicious user to execute unauthorized malicious script code via the "err" parameter of the error process HTTP requests.
Fortinet Fortios
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »