Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortisandbox vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-26115
A use of password hash with insufficient computational effort vulnerability [CWE-916] in FortiSandbox prior to 4.2.0 may allow an attacker with access to the password database to efficiently mount bulk guessing attacks to recover the passwords.
Fortinet Fortisandbox 3.2.2
Fortinet Fortisandbox 4.0.0
Fortinet Fortisandbox 3.2.0
Fortinet Fortisandbox 3.2.1
Fortinet Fortisandbox 3.2.3
Fortinet Fortisandbox 4.0.1
Fortinet Fortisandbox 4.0.2
NA
CVE-2023-41844
A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSandbox version 4.4.1 and 4.4.0 and 4.2.0 up to and including 4.2.5 and 4.0.0 up to and including 4.0.3 and 3.2.0 up to and including 3.2.4 and 3.1.0 up to and includ...
Fortinet Fortisandbox
Fortinet Fortisandbox 4.4.0
Fortinet Fortisandbox 4.4.1
Fortinet Fortisandbox 4.4.2
NA
CVE-2023-45587
An improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSandbox version 4.4.1 and 4.4.0 and 4.2.0 up to and including 4.2.5 and 4.0.0 up to and including 4.0.3 and 3.2.0 up to and including 3.2.4 and 3.1.0 up to and inclu...
Fortinet Fortisandbox
Fortinet Fortisandbox 4.4.0
Fortinet Fortisandbox 4.4.1
Fortinet Fortisandbox 4.4.2
5.5
CVSSv2
CVE-2020-29013
An improper input validation vulnerability in the sniffer interface of FortiSandbox prior to 3.2.2 may allow an authenticated malicious user to silently halt the sniffer via specifically crafted requests.
Fortinet Fortisandbox
Fortinet Fortisandbox 3.2.0
Fortinet Fortisandbox 3.2.1
NA
CVE-2022-30305
An insufficient logging [CWE-778] vulnerability in FortiSandbox versions 4.0.0 to 4.0.2, 3.2.0 to 3.2.3 and 3.1.0 to 3.1.5 and FortiDeceptor versions 4.2.0, 4.1.0 up to and including 4.1.1, 4.0.0 up to and including 4.0.2, 3.3.0 up to and including 3.3.3, 3.2.0 up to and includin...
Fortinet Fortideceptor 3.1.0
Fortinet Fortisandbox 3.2.2
Fortinet Fortisandbox 3.2.0
Fortinet Fortisandbox 3.2.1
Fortinet Fortideceptor 3.1.1
Fortinet Fortideceptor 4.1.0
Fortinet Fortideceptor 4.1.1
Fortinet Fortideceptor 4.2.0
Fortinet Fortideceptor
Fortinet Fortisandbox
Fortinet Fortisandbox 3.2.3
NA
CVE-2022-22305
An improper certificate validation vulnerability [CWE-295] in FortiManager 7.0.1 and below, 6.4.6 and below; FortiAnalyzer 7.0.2 and below, 6.4.7 and below; FortiOS 6.2.x and 6.0.x; FortiSandbox 4.0.x, 3.2.x and 3.1.x may allow a network adjacent and unauthenticated malicious use...
Fortinet Fortisandbox 4.0.0
Fortinet Fortianalyzer
Fortinet Fortisandbox
Fortinet Fortisandbox 4.0.1
Fortinet Fortisandbox 4.0.2
Fortinet Fortios
Fortinet Fortisandbox 3.0.1
Fortinet Fortianalyzer 7.0.0
Fortinet Fortianalyzer 7.0.1
Fortinet Fortianalyzer 7.0.2
Fortinet Fortimanager 7.0.0
Fortinet Fortimanager 7.0.1
Fortinet Fortimanager
NA
CVE-2023-41836
An improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSandbox version 4.4.0 and 4.2.0 up to and including 4.2.4, and 4.0.0 up to and including 4.0.4 and 3.2.0 up to and including 3.2.4 and 3.1.0 up to and including 3.1....
Fortinet Fortisandbox
Fortinet Fortisandbox 4.4.0
NA
CVE-2023-41843
A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSandbox version 4.4.1 and 4.4.0 and 4.2.0 up to and including 4.2.5 and 4.0.0 up to and including 4.0.3 allows malicious user to execute unauthorized code or commands...
Fortinet Fortisandbox
Fortinet Fortisandbox 2.4.1
NA
CVE-2023-41680
A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSandbox version 4.4.1 and 4.4.0 and 4.2.0 up to and including 4.2.5 and 4.0.0 up to and including 4.0.3 and 3.2.0 up to and including 3.2.4 and 3.1.0 up to and includ...
Fortinet Fortisandbox
Fortinet Fortisandbox 2.4.1
NA
CVE-2022-27485
A improper neutralization of special elements used in an sql command ('sql injection') vulnerability [CWE-89] in Fortinet FortiSandbox version 4.2.0, 4.0.0 up to and including 4.0.2, 3.2.0 up to and including 3.2.3, 3.1.x and 3.0.x allows a remote and authenticated atta...
Fortinet Fortisandbox
Fortinet Fortisandbox 4.2.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »