Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortiproxy vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2019-17656
A Stack-based Buffer Overflow vulnerability in the HTTPD daemon of FortiOS 6.0.10 and below, 6.2.2 and below and FortiProxy 1.0.x, 1.1.x, 1.2.9 and below, 2.0.0 and below may allow an authenticated remote malicious user to crash the service by sending a malformed PUT request to t...
Fortinet Fortiproxy
Fortinet Fortios
6.5
CVSSv3
CVE-2020-6648
A cleartext storage of sensitive information vulnerability in FortiOS command line interface in versions 6.2.4 and previous versions and FortiProxy 2.0.0, 1.2.9 and previous versions may allow an authenticated malicious user to obtain sensitive information such as users passwords...
Fortinet Fortios
Fortinet Fortiproxy 2.0.0
Fortinet Fortiproxy
6.5
CVSSv3
CVE-2018-13383
A heap buffer overflow in Fortinet FortiOS 6.0.0 up to and including 6.0.4, 5.6.0 up to and including 5.6.10, 5.4.0 up to and including 5.4.12, 5.2.14 and previous versions and FortiProxy 2.0.0, 1.2.8 and previous versions in the SSL VPN web portal may cause the SSL VPN web servi...
Fortinet Fortiproxy
Fortinet Fortiproxy 2.0.0
Fortinet Fortios
6.1
CVSSv3
CVE-2022-41330
An improper neutralization of input during web page generation vulnerability ('Cross-site Scripting') [CWE-79] in Fortinet FortiOS version 7.2.0 up to and including 7.2.3, version 7.0.0 up to and including 7.0.9, version 6.4.0 up to and including 6.4.11 and prior to 6.2...
Fortinet Fortiproxy
Fortinet Fortios
6.1
CVSSv3
CVE-2021-43081
An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiOS version 7.0.3 and below, 6.4.8 and below, 6.2.10 and below, 6.0.14 to 6.0.0. and in FortiProxy version 7.0.1 and below, 2.0.7 to 2.0.0 web filter override form may allow an unauthenti...
Fortinet Fortios
Fortinet Fortiproxy
6.1
CVSSv3
CVE-2021-26092
Failure to sanitize input in the SSL VPN web portal of FortiOS 5.2.10 up to and including 5.2.15, 5.4.0 up to and including 5.4.13, 5.6.0 up to and including 5.6.14, 6.0.0 up to and including 6.0.12, 6.2.0 up to and including 6.2.7, 6.4.0 up to and including 6.4.4; and FortiProxy...
Fortinet Fortiproxy
Fortinet Fortiproxy 2.0.0
Fortinet Fortiproxy 2.0.1
Fortinet Fortios
6.1
CVSSv3
CVE-2018-13380
A Cross-site Scripting (XSS) vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.7, 5.4.0 to 5.4.12, 5.2 and below and Fortinet FortiProxy 2.0.0, 1.2.8 and below under SSL VPN web portal allows malicious user to execute unauthorized malicious script code via the error ...
Fortinet Fortios
Fortinet Fortiproxy
Fortinet Fortiproxy 2.0.0
6
CVSSv3
CVE-2022-38378
An improper privilege management vulnerability [CWE-269] in Fortinet FortiOS version 7.2.0 and prior to 7.0.7 and FortiProxy version 7.2.0 up to and including 7.2.1 and prior to 7.0.7 allows an attacker that has access to the admin profile section (System subsection Administrator...
Fortinet Fortiproxy
Fortinet Fortios
5.4
CVSSv3
CVE-2023-29183
An improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiProxy 7.2.0 up to and including 7.2.4, 7.0.0 up to and including 7.0.10 and FortiOS 7.2.0 up to and including 7.2.4, 7.0.0 up to and including 7.0.11, ...
Fortinet Fortios
Fortinet Fortiproxy
5.4
CVSSv3
CVE-2023-22641
A url redirection to untrusted site ('open redirect') in Fortinet FortiOS version 7.2.0 up to and including 7.2.3, FortiOS version 7.0.0 up to and including 7.0.9, FortiOS versions 6.4.0 up to and including 6.4.12, FortiOS all versions 6.2, FortiOS all versions 6.0, For...
Fortinet Fortios
Fortinet Fortiproxy
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36920
buffer overflow
CVE-2024-36913
CVE-2024-5497
CVE-2024-23917
CVE-2024-4956
server-side request forgery
CVE-2024-35468
SSTI
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »