Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortiadc vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-0331
Cross-site scripting (XSS) vulnerability in the web administration interface in FortiADC with firmware prior to 3.2.1 allows remote malicious users to inject arbitrary web script or HTML via the locale parameter to gui_partA/.
Fortinet Fortiadc Firmware
Fortinet Fortiadc-1000e -
Fortinet Fortiadc-600e -
Fortinet Fortiadc-400e -
Fortinet Fortiadc-4000d -
Fortinet Fortiadc-2000d -
Fortinet Fortiadc-1500d -
Fortinet Fortiadc-300e -
Fortinet Fortiadc-200d -
NA
CVE-2023-26210
Multiple improper neutralization of special elements used in an os command ('OS Command Injection') vulnerabilties [CWE-78] in Fortinet FortiADCManager version 7.1.0 and prior to 7.0.0, FortiADC version 7.2.0 and prior to 7.1.2 allows a local authenticated malicious use...
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc 7.2.0
Fortinet Fortiadc 7.1.1
Fortinet Fortiadc 7.1.2
Fortinet Fortiadc Manager 7.1.0
Fortinet Fortiadc Manager 7.0.0
Fortinet Fortiadc Manager 6.2.1
Fortinet Fortiadc Manager 6.2.0
Fortinet Fortiadc Manager 5.2.0
Fortinet Fortiadc Manager 5.2.1
Fortinet Fortiadc Manager 5.3.0
Fortinet Fortiadc Manager 5.4.0
Fortinet Fortiadc Manager 6.0.0
Fortinet Fortiadc Manager 6.1.0
NA
CVE-2023-41673
An improper authorization vulnerability [CWE-285] in Fortinet FortiADC version 7.4.0 and prior to 7.2.2 may allow a low privileged user to read or backup the full system configuration via HTTP or HTTPS requests.
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc 7.2.0
Fortinet Fortiadc 7.1.1
Fortinet Fortiadc 7.1.2
Fortinet Fortiadc 7.4.0
NA
CVE-2022-33875
An improper neutralization of special elements used in an SQL Command ('SQL Injection') vulnerability in Fortinet FortiADC version 7.1.0, version 7.0.0 up to and including 7.0.2 and version 6.2.4 and below allows an authenticated malicious user to execute unauthorized c...
Fortinet Fortiadc 7.0.1
Fortinet Fortiadc 7.0.0
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc
Fortinet Fortiadc 7.0.2
NA
CVE-2022-33876
Multiple instances of improper input validation vulnerability in Fortinet FortiADC version 7.1.0, version 7.0.0 up to and including 7.0.2 and version 6.2.4 and below allows an authenticated malicious user to retrieve files with specific extension from the underlying Linux system ...
Fortinet Fortiadc 7.0.1
Fortinet Fortiadc 7.0.0
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc 7.0.2
Fortinet Fortiadc
NA
CVE-2023-29177
Multiple buffer copy without checking size of input ('classic buffer overflow') vulnerabilities [CWE-120] in FortiADC version 7.2.0 and prior to 7.1.2 & FortiDDoS-F version 6.5.0 and prior to 6.4.1 allows a privileged malicious user to execute arbitrary code or comm...
Fortinet Fortiadc 7.2.0
Fortinet Fortiadc
Fortinet Fortiadc 7.0.0
Fortinet Fortiadc 6.0.0
Fortinet Fortiadc 5.3.0
Fortinet Fortiadc 5.4.0
Fortinet Fortiadc 6.1.0
Fortinet Fortiadc 5.2.0
Fortinet Fortiadc 6.2.0
Fortinet Fortiddos-f
Fortinet Fortiddos-f 6.5.0
Fortinet Fortiddos-f 6.3.0
Fortinet Fortiddos-f 6.2.0
4.3
CVSSv2
CVE-2014-8618
Cross-site scripting (XSS) vulnerability in the theme login page in Fortinet FortiADC D models prior to 4.2 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Fortinet Fortiadc Firmware
Fortinet Fortiadc-700d -
Fortinet Fortiadc-200d -
Fortinet Fortiadc-1500d -
Fortinet Fortiadc-2000d -
Fortinet Fortiadc-4000d -
NA
CVE-2023-26205
An improper access control vulnerability [CWE-284] in FortiADC automation feature 7.1.0 up to and including 7.1.2, 7.0 all versions, 6.2 all versions, 6.1 all versions may allow an authenticated low-privileged malicious user to escalate their privileges to super_admin via a speci...
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
Fortinet Fortiadc 7.1.1
Fortinet Fortiadc 7.1.2
NA
CVE-2021-43076
An improper privilege management vulnerability [CWE-269] in FortiADC versions 6.2.1 and below, 6.1.5 and below, 6.0.4 and below, 5.4.5 and below and 5.3.7 and below may allow a remote authenticated attacker with restricted user profile to modify the system files using the shell a...
Fortinet Fortiadc 6.2.0
Fortinet Fortiadc 6.2.1
Fortinet Fortiadc
NA
CVE-2022-26120
Multiple improper neutralization of special elements used in an SQL Command ('SQL Injection') vulnerabilities [CWE-89] in FortiADC management interface 7.0.0 up to and including 7.0.1, 5.0.0 up to and including 6.2.2 may allow an authenticated malicious user to execute ...
Fortinet Fortiadc
Fortinet Fortiadc 7.0.1
Fortinet Fortiadc 7.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »