Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortimanager 7.2.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-36554
A improper access control in Fortinet FortiManager version 7.4.0, version 7.2.0 up to and including 7.2.3, version 7.0.0 up to and including 7.0.10, version 6.4.0 up to and including 6.4.13, 6.2 all versions allows malicious user to execute unauthorized code or commands via speci...
Fortinet Fortimanager
Fortinet Fortimanager 7.4.0
2 Articles
9.6
CVSSv3
CVE-2023-41679
An improper access control vulnerability [CWE-284] in FortiManager management interface 7.2.0 up to and including 7.2.2, 7.0.0 up to and including 7.0.7, 6.4.0 up to and including 6.4.11, 6.2 all versions, 6.0 all versions may allow a remote and authenticated attacker with at lea...
Fortinet Fortimanager 7.2.0
Fortinet Fortimanager 7.2.1
Fortinet Fortimanager
Fortinet Fortimanager 7.2.2
8.1
CVSSv3
CVE-2023-22642
An improper certificate validation vulnerability [CWE-295] in FortiAnalyzer and FortiManager 7.2.0 up to and including 7.2.1, 7.0.0 up to and including 7.0.5, 6.4.8 up to and including 6.4.10 may allow a remote and unauthenticated malicious user to perform a Man-in-the-Middle att...
Fortinet Fortianalyzer
Fortinet Fortimanager
7.8
CVSSv3
CVE-2023-25607
An improper neutralization of special elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78 ] in FortiManager 7.2.0 up to and including 7.2.2, 7.0.0 up to and including 7.0.7, 6.4.0 up to and including 6.4.11, 6.2 all versions, 6.0 all versions, ...
Fortinet Fortiadc
Fortinet Fortiadc 7.1.0
Fortinet Fortimanager 7.2.0
Fortinet Fortianalyzer
Fortinet Fortianalyzer 7.2.1
Fortinet Fortimanager 7.2.1
Fortinet Fortimanager
Fortinet Fortianalyzer 7.2.2
Fortinet Fortimanager 7.2.2
7.1
CVSSv3
CVE-2023-41838
An improper neutralization of special elements used in an os command ('os command injection') in FortiManager 7.4.0 and 7.2.0 up to and including 7.2.3 may allow malicious user to execute unauthorized code or commands via FortiManager cli.
Fortinet Fortimanager
Fortinet Fortianalyzer 7.4.0
Fortinet Fortianalyzer
Fortinet Fortimanager 7.4.0
6.7
CVSSv3
CVE-2023-41842
A use of externally-controlled format string vulnerability [CWE-134] in Fortinet FortiManager version 7.4.0 up to and including 7.4.1, version 7.2.0 up to and including 7.2.3 and prior to 7.0.10, Fortinet FortiAnalyzer version 7.4.0 up to and including 7.4.1, version 7.2.0 up to ...
Fortinet Fortianalyzer
Fortinet Fortimanager
Fortinet Fortianalyzer Bigdata
Fortinet Fortianalyzer Bigdata 6.2.5
Fortinet Fortiportal
6.7
CVSSv3
CVE-2023-42788
An improper neutralization of special elements used in an os command ('OS Command Injection') vulnerability [CWE-78] in FortiManager & FortiAnalyzer version 7.4.0, version 7.2.0 up to and including 7.2.3, version 7.0.0 up to and including 7.0.8, version 6.4.0 up to ...
Fortinet Fortimanager
Fortinet Fortianalyzer 7.4.0
Fortinet Fortianalyzer
Fortinet Fortimanager 7.4.0
6.5
CVSSv3
CVE-2023-44256
A server-side request forgery vulnerability [CWE-918] in Fortinet FortiAnalyzer version 7.4.0, version 7.2.0 up to and including 7.2.3 and prior to 7.0.8 and FortiManager version 7.4.0, version 7.2.0 up to and including 7.2.3 and prior to 7.0.8 allows a remote attacker with low p...
Fortinet Fortianalyzer 7.4.0
Fortinet Fortianalyzer
Fortinet Fortimanager 7.4.0
Fortinet Fortimanager
6.5
CVSSv3
CVE-2023-25606
An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-23] in FortiAnalyzer and FortiManager management interface 7.2.0 up to and including 7.2.1, 7.0.0 up to and including 7.0.5, 6.4 all versions may allow a remote and auth...
Fortinet Fortianalyzer
Fortinet Fortimanager
6.5
CVSSv3
CVE-2023-25609
A server-side request forgery (SSRF) vulnerability [CWE-918] in FortiManager and FortiAnalyzer GUI 7.2.0 up to and including 7.2.1, 7.0.0 up to and including 7.0.6, 6.4.8 up to and including 6.4.11 may allow a remote and authenticated malicious user to access unauthorized files a...
Fortinet Fortimanager 7.2.0
Fortinet Fortianalyzer 7.2.0
Fortinet Fortianalyzer 7.2.1
Fortinet Fortimanager 7.2.1
Fortinet Fortimanager
Fortinet Fortianalyzer
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »