Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortios 7.0.0 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2023-44247
A double free vulnerability [CWE-415] in Fortinet FortiOS prior to 7.0.0 may allow a privileged malicious user to execute code or commands via crafted HTTP or HTTPs requests.
Fortinet Fortios
6.5
CVSSv3
CVE-2023-33305
A loop with unreachable exit condition ('infinite loop') in Fortinet FortiOS version 7.2.0 up to and including 7.2.4, FortiOS version 7.0.0 up to and including 7.0.10, FortiOS 6.4 all versions, FortiOS 6.2 all versions, FortiOS 6.0 all versions, FortiProxy version 7.2.0...
Fortinet Fortiproxy
Fortinet Fortios
Fortinet Fortiweb
Fortinet Fortiweb 7.2.0
Fortinet Fortiweb 7.2.1
9.8
CVSSv3
CVE-2023-28001
An insufficient session expiration in Fortinet FortiOS 7.0.0 - 7.0.12 and 7.2.0 - 7.2.4 allows an malicious user to execute unauthorized code or commands via reusing the session of a deleted user in the REST API.
Fortinet Fortios
5.4
CVSSv3
CVE-2022-40680
A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiOS 6.0.7 - 6.0.15, 6.2.2 - 6.2.12, 6.4.0 - 6.4.9 and 7.0.0 - 7.0.3 allows a privileged malicious user to execute unauthorized code or commands via storing malicious p...
Fortinet Fortios
6.5
CVSSv3
CVE-2023-26207
An insertion of sensitive information into log file vulnerability in Fortinet FortiOS 7.2.0 up to and including 7.2.4 and FortiProxy 7.0.0 up to and including 7.0.10. 7.2.0 up to and including 7.2.1 allows an malicious user to read certain passwords in plain text.
Fortinet Fortiproxy 7.2.0
Fortinet Fortiproxy 7.2.1
Fortinet Fortios
Fortinet Fortiproxy
4.3
CVSSv3
CVE-2022-23442
An improper access control vulnerability [CWE-284] in FortiOS versions 6.2.0 up to and including 6.2.11, 6.4.0 up to and including 6.4.8 and 7.0.0 up to and including 7.0.5 may allow an authenticated attacker with a restricted user profile to gather the checksum information about...
Fortinet Fortios
7.1
CVSSv3
CVE-2022-41328
A improper limitation of a pathname to a restricted directory vulnerability ('path traversal') [CWE-22] in Fortinet FortiOS version 7.2.0 up to and including 7.2.3, 7.0.0 up to and including 7.0.9 and prior to 6.4.11 allows a privileged malicious user to read and write ...
Fortinet Fortios
1 Github repository
3 Articles
6.1
CVSSv3
CVE-2022-41334
An improper neutralization of input during web page generation [CWE-79] vulnerability in FortiOS versions 7.0.0 to 7.0.7 and 7.2.0 to 7.2.3 may allow a remote, unauthenticated malicious user to launch a cross site scripting (XSS) attack via the "redir" parameter of the ...
Fortinet Fortios
9.8
CVSSv3
CVE-2023-33308
A stack-based overflow vulnerability [CWE-124] in Fortinet FortiOS version 7.0.0 up to and including 7.0.10 and 7.2.0 up to and including 7.2.3 and FortiProxy version 7.0.0 up to and including 7.0.9 and 7.2.0 up to and including 7.2.2 allows a remote unauthenticated malicious use...
Fortinet Fortiproxy 7.2.0
Fortinet Fortiproxy 7.2.1
Fortinet Fortios
Fortinet Fortiproxy 7.2.2
Fortinet Fortiproxy
5.3
CVSSv3
CVE-2023-41675
A use after free vulnerability [CWE-416] in FortiOS version 7.2.0 up to and including 7.2.4 and version 7.0.0 up to and including 7.0.10 and FortiProxy version 7.2.0 up to and including 7.2.2 and version 7.0.0 up to and including 7.0.8 may allow an unauthenticated remote maliciou...
Fortinet Fortiproxy 7.2.0
Fortinet Fortiproxy 7.2.1
Fortinet Fortiproxy
Fortinet Fortios
Fortinet Fortiproxy 7.2.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »