Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortios 7.2.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-35843
An authentication bypass by assumed-immutable data vulnerability [CWE-302] in the FortiOS SSH login component 7.2.0, 7.0.0 up to and including 7.0.7, 6.4.0 up to and including 6.4.9, 6.2 all versions, 6.0 all versions and FortiProxy SSH login component 7.0.0 up to and including 7...
Fortinet Fortiproxy
Fortinet Fortios 7.2.0
Fortinet Fortios
Fortinet Fortios 7.2.1
NA
CVE-2022-30307
A key management error vulnerability [CWE-320] affecting the RSA SSH host key in FortiOS 7.2.0 and below, 7.0.6 and below, 6.4.9 and below may allow an unauthenticated malicious user to perform a man in the middle attack.
Fortinet Fortios
NA
CVE-2022-38380
An improper access control [CWE-284] vulnerability in FortiOS version 7.2.0 and versions 7.0.0 up to and including 7.0.7 may allow a remote authenticated read-only user to modify the interface settings via the API.
Fortinet Fortios 7.2.0
Fortinet Fortios
NA
CVE-2022-26122
An insufficient verification of data authenticity vulnerability [CWE-345] in FortiClient, FortiMail and FortiOS AV engines version 6.2.168 and below and version 6.4.274 and below may allow an malicious user to bypass the AV engine via manipulating MIME attachment with junk and pa...
Fortinet Fortimail 4.1.0
Fortinet Fortimail
Fortinet Fortios
Fortinet Fortios 7.2.0
Fortinet Antivirus Engine 6.33
Fortinet Antivirus Engine 6.253
Fortinet Antivirus Engine 6.252
Fortinet Antivirus Engine 6.243
Fortinet Antivirus Engine 6.157
Fortinet Antivirus Engine 6.156
Fortinet Antivirus Engine 6.145
Fortinet Antivirus Engine 6.144
Fortinet Antivirus Engine 6.142
Fortinet Antivirus Engine 6.137
Fortinet Antivirus Engine 4.4.54
Fortinet Antivirus Engine 2.0.60
Fortinet Antivirus Engine 2.0.49
Fortinet Antivirus Engine 0.4.23
NA
CVE-2022-35842
An exposure of sensitive information to an unauthorized actor vulnerabiltiy [CWE-200] in FortiOS SSL-VPN versions 7.2.0, versions 7.0.0 up to and including 7.0.6 and versions 6.4.0 up to and including 6.4.9 may allow a remote unauthenticated malicious user to gain information abo...
Fortinet Fortios 7.2.0
Fortinet Fortios
NA
CVE-2022-29055
A access of uninitialized pointer in Fortinet FortiOS version 7.2.0, 7.0.0 up to and including 7.0.5, 6.4.0 up to and including 6.4.8, 6.2.0 up to and including 6.2.10, 6.0.x, FortiProxy version 7.0.0 up to and including 7.0.4, 2.0.0 up to and including 2.0.9, 1.2.x allows a remo...
Fortinet Fortios
Fortinet Fortios 7.2.0
Fortinet Fortiproxy 7.2.0
Fortinet Fortiproxy
NA
CVE-2022-40684
An authentication bypass using an alternate path or channel [CWE-288] in Fortinet FortiOS version 7.2.0 up to and including 7.2.1 and 7.0.0 up to and including 7.0.6, FortiProxy version 7.2.0 and version 7.0.0 up to and including 7.0.6 and FortiSwitchManager version 7.2.0 and 7.0...
Fortinet Fortiswitchmanager 7.0.0
Fortinet Fortiswitchmanager 7.2.0
Fortinet Fortiproxy 7.2.0
Fortinet Fortiproxy
Fortinet Fortios
1 Metasploit module
30 Github repositories
2 Articles
NA
CVE-2022-29053
A missing cryptographic steps vulnerability [CWE-325] in the functions that encrypt the keytab files in FortiOS version 7.2.0, 7.0.0 up to and including 7.0.5 and below 7.0.0 may allow an attacker in possession of the encrypted file to decipher it.
Fortinet Fortios
Fortinet Fortios 7.2.0
NA
CVE-2022-27491
A improper verification of source of a communication channel in Fortinet FortiOS with IPS engine version 7.201 up to and including 7.214, 7.001 up to and including 7.113, 6.001 up to and including 6.121, 5.001 up to and including 5.258 and prior to 4.086 allows a remote and unaut...
Fortinet Fortios
Fortinet Fortios 7.2.0
NA
CVE-2021-43080
An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiOS version 7.2.0, version 6.4.0 up to and including 6.4.9, version 7.0.0 up to and including 7.0.5 may allow an authenticated malicious user to perform a stored cross site scripting (XSS...
Fortinet Fortios 7.2.0
Fortinet Fortios
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6