Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortimanager vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-26121
An exposure of resource to wrong sphere vulnerability [CWE-668] in FortiAnalyzer and FortiManager GUI 7.0.0 up to and including 7.0.3, 6.4.0 up to and including 6.4.8, 6.2.0 up to and including 6.2.9, 6.0.0 up to and including 6.0.11, 5.6.0 up to and including 5.6.11 may allow an...
Fortinet Fortimanager
Fortinet Fortianalyzer
187
VMScore
CVE-2021-24022
A buffer overflow vulnerability in FortiAnalyzer CLI 6.4.5 and below, 6.2.7 and below, 6.0.x and FortiManager CLI 6.4.5 and below, 6.2.7 and below, 6.0.x may allow an authenticated, local malicious user to perform a Denial of Service attack by running the `diagnose system geoip-c...
Fortinet Fortianalyzer
Fortinet Fortimanager
NA
CVE-2023-36638
An improper privilege management vulnerability [CWE-269] in FortiManager 7.2.0 up to and including 7.2.2, 7.0.0 up to and including 7.0.7, 6.4.0 up to and including 6.4.11, 6.2 all versions, 6.0 all versions and FortiAnalyzer 7.2.0 up to and including 7.2.2, 7.0.0 up to and inclu...
Fortinet Fortimanager
Fortinet Fortianalyzer
580
VMScore
CVE-2022-22300
A improper handling of insufficient permissions or privileges in Fortinet FortiAnalyzer version 5.6.0 up to and including 5.6.11, FortiAnalyzer version 6.0.0 up to and including 6.0.11, FortiAnalyzer version 6.2.0 up to and including 6.2.9, FortiAnalyzer version 6.4.0 up to and i...
Fortinet Fortimanager
Fortinet Fortianalyzer
383
VMScore
CVE-2018-13375
An Improper Neutralization of Script-Related HTML Tags in Fortinet FortiAnalyzer 5.6.0 and below and FortiManager 5.6.0 and below allows an malicious user to send DHCP request containing malicious scripts in the HOSTNAME parameter. The malicious script code is executed while view...
Fortinet Fortianalyzer
Fortinet Fortimanager
641
VMScore
CVE-2021-26104
Multiple OS command injection (CWE-78) vulnerabilities in the command line interface of FortiManager 6.2.7 and below, 6.4.5 and below and all versions of 6.2.x, 6.0.x and 5.6.x, FortiAnalyzer 6.2.7 and below, 6.4.5 and below and all versions of 6.2.x, 6.0.x and 5.6.x, and FortiPo...
Fortinet Fortimanager
Fortinet Fortianalyzer
Fortinet Fortiportal
NA
CVE-2022-27490
A exposure of sensitive information to an unauthorized actor in Fortinet FortiManager version 6.0.0 up to and including 6.0.4, FortiAnalyzer version 6.0.0 up to and including 6.0.4, FortiPortal version 6.0.0 up to and including 6.0.9, 5.3.0 up to and including 5.3.8, 5.2.x, 5.1.0...
Fortinet Fortiportal
Fortinet Fortimanager
Fortinet Fortianalyzer
Fortinet Fortiswitch
NA
CVE-2021-43072
A buffer copy without checking size of input ('classic buffer overflow') in Fortinet FortiAnalyzer version 7.0.2 and below, version 6.4.7 and below, version 6.2.9 and below, version 6.0.11 and below, version 5.6.11 and below, FortiManager version 7.0.2 and below, versio...
Fortinet Fortianalyzer
Fortinet Fortimanager
Fortinet Fortios
Fortinet Fortiproxy
383
VMScore
CVE-2014-2336
Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface in Fortinet FortiManager prior to 5.0.7 and FortiAnalyzer prior to 5.0.7 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2...
Fortinet Fortimanager
Fortinet Fortianalyzer Firmware
312
VMScore
CVE-2018-1351
A Cross-site Scripting (XSS) vulnerability in Fortinet FortiManager 6.0.0, 5.6.6 and below versions allows malicious user to execute HTML/javascript code via managed remote devices CLI commands by viewing the remote device CLI config installation log.
Fortinet Fortimanager
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »