Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortios 7.2.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-42475
A heap-based buffer overflow vulnerability [CWE-122] in FortiOS SSL-VPN 7.2.0 up to and including 7.2.2, 7.0.0 up to and including 7.0.8, 6.4.0 up to and including 6.4.10, 6.2.0 up to and including 6.2.11, 6.0.15 and previous versions and FortiProxy SSL-VPN 7.2.0 up to and includ...
Fortinet Fortios
Fortinet Fortiproxy
Fortinet Fortiproxy 7.2.0
9 Github repositories
6 Articles
7.1
CVSSv3
CVE-2022-41328
A improper limitation of a pathname to a restricted directory vulnerability ('path traversal') [CWE-22] in Fortinet FortiOS version 7.2.0 up to and including 7.2.3, 7.0.0 up to and including 7.0.9 and prior to 6.4.11 allows a privileged malicious user to read and write ...
Fortinet Fortios
1 Github repository
3 Articles
6.1
CVSSv3
CVE-2022-41334
An improper neutralization of input during web page generation [CWE-79] vulnerability in FortiOS versions 7.0.0 to 7.0.7 and 7.2.0 to 7.2.3 may allow a remote, unauthenticated malicious user to launch a cross site scripting (XSS) attack via the "redir" parameter of the ...
Fortinet Fortios
8.6
CVSSv3
CVE-2022-26122
An insufficient verification of data authenticity vulnerability [CWE-345] in FortiClient, FortiMail and FortiOS AV engines version 6.2.168 and below and version 6.4.274 and below may allow an malicious user to bypass the AV engine via manipulating MIME attachment with junk and pa...
Fortinet Fortimail 4.1.0
Fortinet Fortimail
Fortinet Fortios
Fortinet Fortios 7.2.0
Fortinet Antivirus Engine 6.33
Fortinet Antivirus Engine 6.253
Fortinet Antivirus Engine 6.252
Fortinet Antivirus Engine 6.243
Fortinet Antivirus Engine 6.157
Fortinet Antivirus Engine 6.156
Fortinet Antivirus Engine 6.145
Fortinet Antivirus Engine 6.144
Fortinet Antivirus Engine 6.142
Fortinet Antivirus Engine 6.137
Fortinet Antivirus Engine 4.4.54
Fortinet Antivirus Engine 2.0.60
Fortinet Antivirus Engine 2.0.49
Fortinet Antivirus Engine 0.4.23
8.8
CVSSv3
CVE-2023-22640
A out-of-bounds write in Fortinet FortiOS version 7.2.0 up to and including 7.2.3, FortiOS version 7.0.0 up to and including 7.0.10, FortiOS version 6.4.0 up to and including 6.4.11, FortiOS version 6.2.0 up to and including 6.2.13, FortiOS all versions 6.0, FortiProxy version 7....
Fortinet Fortiproxy 2.0.0
Fortinet Fortios
Fortinet Fortiproxy 1.0.0
Fortinet Fortiproxy 1.2.0
Fortinet Fortiproxy 1.1.0
NA
CVE-2023-29179
A null pointer dereference in Fortinet FortiOS version 7.2.0 up to and including 7.2.4, 7.0.0 up to and including 7.0.11, 6.4.0 up to and including 6.4.12, Fortiproxy version 7.2.0 up to and including 7.2.4, 7.0.0 up to and including 7.0.10 allows malicious user to denial of serv...
NA
CVE-2023-41677
A insufficiently protected credentials in Fortinet FortiProxy 7.4.0, 7.2.0 up to and including 7.2.6, 7.0.0 up to and including 7.0.12, 2.0.0 up to and including 2.0.13, 1.2.0 up to and including 1.2.13, 1.1.0 up to and including 1.1.6, 1.0.0 up to and including 1.0.7, Fortinet F...
1 Article
NA
CVE-2023-29180
A null pointer dereference in Fortinet FortiOS version 7.2.0 up to and including 7.2.4, 7.0.0 up to and including 7.0.11, 6.4.0 up to and including 6.4.12, 6.2.0 up to and including 6.2.14, 6.0.0 up to and including 6.0.16, FortiProxy 7.2.0 up to and including 7.2.3, 7.0.0 up to ...
NA
CVE-2024-23662
An exposure of sensitive information to an unauthorized actor in Fortinet FortiOS at least version at least 7.4.0 up to and including 7.4.1 and 7.2.0 up to and including 7.2.5 and 7.0.0 up to and including 7.0.15 and 6.4.0 up to and including 6.4.15 allows malicious user to infor...
1 Article
NA
CVE-2023-29181
A use of externally-controlled format string in Fortinet FortiOS 7.2.0 up to and including 7.2.4, 7.0.0 up to and including 7.0.11, 6.4.0 up to and including 6.4.12, 6.2.0 up to and including 6.2.14, 6.0.0 up to and including 6.0.16, FortiProxy 7.2.0 up to and including 7.2.4, 7....
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6