Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortiadc vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-38381
An improper handling of malformed request vulnerability [CWE-228] exists in FortiADC 5.0 all versions, 6.0.0 all versions, 6.1.0 all versions, 6.2.0 up to and including 6.2.3, and 7.0.0 up to and including 7.0.2. This may allow a remote attacker without privileges to bypass some ...
Fortinet Fortiadc
9.1
CVSSv3
CVE-2023-25603
A permissive cross-domain policy with untrusted domains vulnerability in Fortinet FortiADC 7.1.0 - 7.1.1, FortiDDoS-F 6.3.0 - 6.3.4 and 6.4.0 - 6.4.1 allow an unauthorized malicious user to carry out privileged actions and retrieve sensitive information via crafted web requests.
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc 7.1.1
Fortinet Fortiddos-f 6.4.0
Fortinet Fortiddos-f 6.4.1
Fortinet Fortiddos-f
8.8
CVSSv3
CVE-2023-26205
An improper access control vulnerability [CWE-284] in FortiADC automation feature 7.1.0 up to and including 7.1.2, 7.0 all versions, 6.2 all versions, 6.1 all versions may allow an authenticated low-privileged malicious user to escalate their privileges to super_admin via a speci...
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc 7.1.1
Fortinet Fortiadc 7.1.2
8.8
CVSSv3
CVE-2022-35849
An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in the management interface of FortiADC 7.1.0 up to and including 7.1.1, 7.0.0 up to and including 7.0.3, 6.2.0 up to and including 6.2.5 and 6.1.0 all versions may allow an authenticated ...
Fortinet Fortiadc
8.8
CVSSv3
CVE-2022-39947
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiADC version 7.0.0 up to and including 7.0.2, FortiADC version 6.2.0 up to and including 6.2.3, FortiADC version version 6.1.0 up to and including 6.1.6, FortiAD...
Fortinet Fortiadc 7.0.1
Fortinet Fortiadc 7.0.0
Fortinet Fortiadc
8.8
CVSSv3
CVE-2022-33875
An improper neutralization of special elements used in an SQL Command ('SQL Injection') vulnerability in Fortinet FortiADC version 7.1.0, version 7.0.0 up to and including 7.0.2 and version 6.2.4 and below allows an authenticated malicious user to execute unauthorized c...
Fortinet Fortiadc 7.0.1
Fortinet Fortiadc 7.0.0
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc
Fortinet Fortiadc 7.0.2
8.8
CVSSv3
CVE-2022-26120
Multiple improper neutralization of special elements used in an SQL Command ('SQL Injection') vulnerabilities [CWE-89] in FortiADC management interface 7.0.0 up to and including 7.0.1, 5.0.0 up to and including 6.2.2 may allow an authenticated malicious user to execute ...
Fortinet Fortiadc
Fortinet Fortiadc 7.0.1
Fortinet Fortiadc 7.0.0
8.8
CVSSv3
CVE-2018-13374
A Improper Access Control in Fortinet FortiOS 6.0.2, 5.6.7 and before, FortiADC 6.1.0, 6.0.0 to 6.0.1, 5.4.0 to 5.4.4 allows malicious user to obtain the LDAP server login credentials configured in FortiGate via pointing a LDAP server connectivity test request to a rogue LDAP ser...
Fortinet Fortios
2 Github repositories
1 Article
7.8
CVSSv3
CVE-2023-25607
An improper neutralization of special elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78 ] in FortiManager 7.2.0 up to and including 7.2.2, 7.0.0 up to and including 7.0.7, 6.4.0 up to and including 6.4.11, 6.2 all versions, 6.0 all versions, ...
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
Fortinet Fortimanager 7.2.0
Fortinet Fortianalyzer
Fortinet Fortianalyzer 7.2.1
Fortinet Fortimanager 7.2.1
Fortinet Fortimanager
Fortinet Fortianalyzer 7.2.2
Fortinet Fortimanager 7.2.2
7.8
CVSSv3
CVE-2023-28000
An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in FortiADC CLI 7.1.0, 7.0.0 up to and including 7.0.3, 6.2.0 up to and including 6.2.4, 6.1 all versions, 6.0 all versions may allow a local and authenticated malicious user to execute un...
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »