Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortios 5.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2016-1909
Fortinet FortiAnalyzer prior to 5.0.12 and 5.2.x prior to 5.2.5; FortiSwitch 3.3.x prior to 3.3.3; FortiCache 3.0.x prior to 3.0.8; and FortiOS 4.1.x prior to 4.1.11, 4.2.x prior to 4.2.16, 4.3.x prior to 4.3.17 and 5.0.x prior to 5.0.8 have a hardcoded passphrase for the Fortima...
Fortinet Fortios 5.0.2
Fortinet Fortios 5.0.6
Fortinet Fortios 5.0.7
Fortinet Fortios 5.0
Fortinet Fortios 5.0.1
Fortinet Fortios
Fortinet Fortios 5.0.3
Fortinet Fortios 5.0.4
Fortinet Fortios 5.0.5
Fortinet Fortios 5.0.0
1 EDB exploit
6.1
CVSSv3
CVE-2016-3978
The Web User Interface (WebUI) in FortiOS 5.0.x prior to 5.0.13, 5.2.x prior to 5.2.3, and 5.4.x prior to 5.4.0 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks or cross-site scripting (XSS) attacks via the "redirect" p...
Fortinet Fortios 5.0.1
Fortinet Fortios 5.0.0
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.1
Fortinet Fortios 5.0.10
Fortinet Fortios 5.0.9
Fortinet Fortios 5.0.8
Fortinet Fortios 5.0.7
Fortinet Fortios 5.0.11
Fortinet Fortios 5.0.6
Fortinet Fortios 5.0.4
Fortinet Fortios 5.0.2
Fortinet Fortios 5.2.0
Fortinet Fortios 5.0.12
Fortinet Fortios 5.0.5
Fortinet Fortios 5.0.3
Fortinet Fortios 5.4
5.4
CVSSv3
CVE-2017-14186
A Cross-site Scripting (XSS) vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.7, 5.4 and below versions under SSL VPN web portal allows a remote user to inject arbitrary web script or HTML in the context of the victim's browser via the login redir parameter. An...
Fortinet Fortios
NA
CVE-2015-2323
FortiOS 5.0.x prior to 5.0.12 and 5.2.x prior to 5.2.4 supports anonymous, export, RC4, and possibly other weak ciphers when using TLS to connect to FortiGuard servers, which allows man-in-the-middle malicious users to spoof TLS content by modifying packets.
Fortinet Fortios 5.0.5
Fortinet Fortios 5.0.6
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.2
Fortinet Fortios 5.0.2
Fortinet Fortios 5.0.3
Fortinet Fortios 5.0.4
Fortinet Fortios 5.0.11
Fortinet Fortios 5.2.0
Fortinet Fortios 5.0.7
Fortinet Fortios 5.0.8
Fortinet Fortios 5.2.3
Fortinet Fortios 5.0.0
Fortinet Fortios 5.0.1
Fortinet Fortios 5.0.9
Fortinet Fortios 5.0.10
NA
CVE-2015-1571
The CAPWAP DTLS protocol implementation in Fortinet FortiOS 5.0 Patch 7 build 4457 uses the same certificate and private key across different customers' installations, which makes it easier for man-in-the-middle malicious users to spoof SSL servers by leveraging the Fortinet...
Fortinet Fortios 5.0.7
NA
CVE-2015-1451
Multiple cross-site scripting (XSS) vulnerabilities in Fortinet FortiOS 5.0 Patch 7 build 4457 allow remote authenticated users to inject arbitrary web script or HTML via the (1) WTP Name or (2) WTP Active Software Version field in a CAPWAP Join request.
Fortinet Fortios 5.0.7
NA
CVE-2015-1452
The Control and Provisioning of Wireless Access Points (CAPWAP) daemon in Fortinet FortiOS 5.0 Patch 7 build 4457 allows remote malicious users to cause a denial of service (locked CAPWAP Access Controller) via a large number of ClientHello DTLS messages.
Fortinet Fortios 5.0.7
NA
CVE-2013-1414
Multiple cross-site request forgery (CSRF) vulnerabilities in Fortinet FortiOS on FortiGate firewall devices prior to 4.3.13 and 5.x prior to 5.0.2 allow remote malicious users to hijack the authentication of administrators for requests that modify (1) settings or (2) policies, o...
Fortinet Fortios 5.0.1
Fortinet Fortios 5.0
Fortinet Fortios
Fortinet Fortios 4.3.10
Fortinet Fortigate-3040b -
Fortinet Fortigate-3240c -
Fortinet Fortigate-5001b -
Fortinet Fortigate-80c -
Fortinet Fortigate-40c -
Fortinet Fortigate-20c -
Fortinet Fortigate-110c -
Fortinet Fortigate-voice-80c -
Fortinet Fortigate-1240b -
Fortinet Fortigate-300c -
Fortinet Fortigate-5020 -
Fortinet Fortigate-3950b -
Fortinet Fortigate-311b -
Fortinet Fortigate-310b -
Fortinet Fortigate-800c -
Fortinet Fortigate-5001a-sw -
Fortinet Fortigate-5101c -
Fortinet Fortigate-600c -
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started