Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortiproxy vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2019-17656
A Stack-based Buffer Overflow vulnerability in the HTTPD daemon of FortiOS 6.0.10 and below, 6.2.2 and below and FortiProxy 1.0.x, 1.1.x, 1.2.9 and below, 2.0.0 and below may allow an authenticated remote malicious user to crash the service by sending a malformed PUT request to t...
Fortinet Fortiproxy
Fortinet Fortios
NA
CVE-2022-41330
An improper neutralization of input during web page generation vulnerability ('Cross-site Scripting') [CWE-79] in Fortinet FortiOS version 7.2.0 up to and including 7.2.3, version 7.0.0 up to and including 7.0.9, version 6.4.0 up to and including 6.4.11 and prior to 6.2...
Fortinet Fortiproxy
Fortinet Fortios
NA
CVE-2023-33306
A null pointer dereference in Fortinet FortiOS prior to 7.2.5, prior to 7.0.11 and prior to 6.4.13, FortiProxy prior to 7.2.4 and prior to 7.0.10 allows malicious user to denial of sslvpn service via specifically crafted request in bookmark parameter.
Fortinet Fortios
Fortinet Fortiproxy
NA
CVE-2022-43947
An improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet FortiOS version 7.2.0 up to and including 7.2.3 and prior to 7.0.10, FortiProxy version 7.2.0 up to and including 7.2.2 and prior to 7.0.8 administrative interface allows an attacker ...
Fortinet Fortiproxy
Fortinet Fortios
NA
CVE-2023-22641
A url redirection to untrusted site ('open redirect') in Fortinet FortiOS version 7.2.0 up to and including 7.2.3, FortiOS version 7.0.0 up to and including 7.0.9, FortiOS versions 6.4.0 up to and including 6.4.12, FortiOS all versions 6.2, FortiOS all versions 6.0, For...
Fortinet Fortios
Fortinet Fortiproxy
NA
CVE-2022-41329
An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in Fortinet FortiProxy version 7.2.0 up to and including 7.2.1 and 7.0.0 up to and including 7.0.7, FortiOS version 7.2.0 up to and including 7.2.3 and 7.0.0 up to and including 7.0.9 allows an ...
Fortinet Fortios
Fortinet Fortiproxy
4.3
CVSSv2
CVE-2021-43206
A server-generated error message containing sensitive information in Fortinet FortiOS 7.0.0 up to and including 7.0.3, 6.4.0 up to and including 6.4.8, 6.2.x, 6.0.x and FortiProxy 7.0.0 up to and including 7.0.1, 2.0.x allows malicious webservers to retrieve a web proxy's cl...
Fortinet Fortios
Fortinet Fortiproxy
NA
CVE-2022-38378
An improper privilege management vulnerability [CWE-269] in Fortinet FortiOS version 7.2.0 and prior to 7.0.7 and FortiProxy version 7.2.0 up to and including 7.2.1 and prior to 7.0.7 allows an attacker that has access to the admin profile section (System subsection Administrator...
Fortinet Fortiproxy
Fortinet Fortios
NA
CVE-2024-23112
An authorization bypass through user-controlled key vulnerability [CWE-639] in FortiOS version 7.4.0 up to and including 7.4.1, 7.2.0 up to and including 7.2.6, 7.0.1 up to and including 7.0.13, 6.4.7 up to and including 6.4.14, and FortiProxy version 7.4.0 up to and including 7....
Fortinet Fortios
Fortinet Fortiproxy
1 Article
NA
CVE-2023-29183
An improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiProxy 7.2.0 up to and including 7.2.4, 7.0.0 up to and including 7.0.10 and FortiOS 7.2.0 up to and including 7.2.4, 7.0.0 up to and including 7.0.11, ...
Fortinet Fortios
Fortinet Fortiproxy
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »