Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortios vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2016-1909
Fortinet FortiAnalyzer prior to 5.0.12 and 5.2.x prior to 5.2.5; FortiSwitch 3.3.x prior to 3.3.3; FortiCache 3.0.x prior to 3.0.8; and FortiOS 4.1.x prior to 4.1.11, 4.2.x prior to 4.2.16, 4.3.x prior to 4.3.17 and 5.0.x prior to 5.0.8 have a hardcoded passphrase for the Fortima...
Fortinet Fortios 5.0.2
Fortinet Fortios 5.0.6
Fortinet Fortios 5.0.7
Fortinet Fortios 5.0
Fortinet Fortios 5.0.1
Fortinet Fortios
Fortinet Fortios 5.0.3
Fortinet Fortios 5.0.4
Fortinet Fortios 5.0.5
Fortinet Fortios 5.0.0
1 EDB exploit
383
VMScore
CVE-2017-3127
A Cross-Site Scripting vulnerability in Fortinet FortiGate 5.2.0 up to and including 5.2.10 allows malicious user to execute unauthorized code or commands via the srcintf parameter during Firewall Policy Creation.
Fortinet Fortios 5.2.3
Fortinet Fortios 5.2.4
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.9
Fortinet Fortios 5.2.10
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.7
Fortinet Fortios 5.2.8
Fortinet Fortios 5.2.5
Fortinet Fortios 5.2.6
383
VMScore
CVE-2016-8492
The implementation of an ANSI X9.31 RNG in Fortinet FortiGate allows malicious users to gain unauthorized read access to data handled by the device via IPSec/TLS decryption.
Fortinet Fortios 4.3.0
Fortinet Fortios 4.3.10
Fortinet Fortios 4.3.13
Fortinet Fortios 4.3.17
Fortinet Fortios 4.3.16
Fortinet Fortios 4.3.15
Fortinet Fortios
Fortinet Fortios 4.3.12
Fortinet Fortios 4.3.14
445
VMScore
CVE-2006-3222
The FTP proxy module in Fortinet FortiOS (FortiGate) prior to 2.80 MR12 and 3.0 MR2 allows remote malicious users to bypass anti-virus scanning via the Enhanced Passive (EPSV) FTP mode.
Fortinet Fortios 2.5 0mr4
Fortinet Fortios 2.50
Fortinet Fortios 2.80
Fortinet Fortios 3.0
Fortinet Fortios 2.36
Fortinet Fortios 3.0 Beta
Fortinet Fortios 3.0 Mr1
Fortinet Fortios 2.50 Mr5
Fortinet Fortios 2.8 Mr10
NA
CVE-2023-27997
A heap-based buffer overflow vulnerability [CWE-122] in FortiOS version 7.2.4 and below, version 7.0.11 and below, version 6.4.12 and below, version 6.0.16 and below and FortiProxy version 7.2.3 and below, version 7.0.9 and below, version 2.0.12 and below, version 1.2 all version...
Fortinet Fortiproxy
Fortinet Fortios
Fortinet Fortios-6k7k 7.0.5
Fortinet Fortios-6k7k 7.0.10
Fortinet Fortios-6k7k 6.4.8
Fortinet Fortios-6k7k 6.4.6
Fortinet Fortios-6k7k 6.4.2
Fortinet Fortios-6k7k 6.4.12
Fortinet Fortios-6k7k 6.4.10
Fortinet Fortios-6k7k 6.2.9
Fortinet Fortios-6k7k 6.2.7
Fortinet Fortios-6k7k 6.2.6
Fortinet Fortios-6k7k 6.2.4
Fortinet Fortios-6k7k
Fortinet Fortios-6k7k 6.0.16
Fortinet Fortios-6k7k 6.0.15
Fortinet Fortios-6k7k 6.0.14
Fortinet Fortios-6k7k 6.0.13
Fortinet Fortios-6k7k 6.0.12
Fortinet Fortios-6k7k 6.0.10
7 Github repositories
4 Articles
383
VMScore
CVE-2017-7733
A Cross-Site-Scripting (XSS) vulnerability in Fortinet FortiOS 5.4.0 to 5.4.5 and 5.6.0 allows a remote unauthenticated malicious user to execute arbitrary javascript code via webUI "Login Disclaimer" redir parameter.
Fortinet Fortios 5.4.0
Fortinet Fortios 5.4.1
Fortinet Fortios 5.4.2
Fortinet Fortios 5.4.3
Fortinet Fortios 5.4.5
Fortinet Fortios 5.4.4
Fortinet Fortios 5.6.0
355
VMScore
CVE-2017-3131
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 up to and including 5.4.4 and 5.6.0 allows malicious users to execute unauthorized code or commands via the filter input in "Applications" under FortiView.
Fortinet Fortios 5.4.4
Fortinet Fortios 5.6.0
Fortinet Fortios 5.4.3
Fortinet Fortios 5.4.2
Fortinet Fortios 5.4.1
Fortinet Fortios 5.4.0
1 EDB exploit
356
VMScore
CVE-2017-14182
A Denial of Service (DoS) vulnerability in Fortinet FortiOS 5.4.0 to 5.4.5 allows an authenticated user to cause the web GUI to be temporarily unresponsive, via passing a specially crafted payload to the 'params' parameter of the JSON web API.
Fortinet Fortios 5.4.5
Fortinet Fortios 5.4.0
Fortinet Fortios 5.4.1
Fortinet Fortios 5.4.2
Fortinet Fortios 5.4.3
Fortinet Fortios 5.4.4
312
VMScore
CVE-2017-7734
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 up to and including 5.4.4 allows malicious users to execute unauthorized code or commands via 'Comments' while saving Config Revisions.
Fortinet Fortios 5.4.4
Fortinet Fortios 5.4.2
Fortinet Fortios 5.4.1
Fortinet Fortios 5.4.0
Fortinet Fortios 5.4.3
NA
CVE-2023-47537
An improper certificate validation vulnerability in Fortinet FortiOS 7.0.0 - 7.0.13, 7.2.0 - 7.2.6 and 7.4.0 - 7.4.1 allows a remote and unauthenticated malicious user to perform a Man-in-the-Middle attack on the FortiLink communication channel between the FortiOS device and Fort...
Fortinet Fortios 7.4.0
Fortinet Fortios 7.4.1
Fortinet Fortios
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »