Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortios vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2018-9185
An information disclosure vulnerability in Fortinet FortiOS 6.0.0 and below versions reveals user's web portal login credentials in a Javascript file sent to client-side when pages bookmarked in web portal use the Single Sign-On feature.
Fortinet Fortios
4.3
CVSSv2
CVE-2012-0941
Multiple cross-site scripting (XSS) vulnerabilities in Fortinet FortiGate UTM WAF appliances with FortiOS 4.3.x prior to 4.3.6 allow remote malicious users to inject arbitrary web script or HTML via vectors involving the (1) Endpoint Monitor, (2) Dialup List, or (3) Log&Repor...
Fortinet Fortios
4.3
CVSSv2
CVE-2017-14190
A Cross-site Scripting vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.7, 5.2 and previous versions, allows malicious user to inject arbitrary web script or HTML via maliciously crafted "Host" header in user HTTP requests.
Fortinet Fortios
4.3
CVSSv2
CVE-2017-7739
A reflected Cross-site Scripting (XSS) vulnerability in web proxy disclaimer response web pages in Fortinet FortiOS 5.6.0, 5.4.0 to 5.4.5, 5.2.0 to 5.2.11 allows an unauthenticated malicious user to inject arbitrary web script or HTML in the context of the victim's browser v...
Fortinet Fortios 5.2.7
Fortinet Fortios 5.6.0
Fortinet Fortios 5.4.3
Fortinet Fortios 5.2.9
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.10
Fortinet Fortios 5.2.6
Fortinet Fortios 5.4.0
Fortinet Fortios 5.2.4
Fortinet Fortios 5.4.1
Fortinet Fortios 5.2.3
Fortinet Fortios 5.2.5
Fortinet Fortios 5.2.11
Fortinet Fortios 5.4.2
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.2
Fortinet Fortios 5.4.4
Fortinet Fortios 5.2.8
Fortinet Fortios 5.4.5
4.3
CVSSv2
CVE-2017-7733
A Cross-Site-Scripting (XSS) vulnerability in Fortinet FortiOS 5.4.0 to 5.4.5 and 5.6.0 allows a remote unauthenticated malicious user to execute arbitrary javascript code via webUI "Login Disclaimer" redir parameter.
Fortinet Fortios 5.6.0
Fortinet Fortios 5.4.3
Fortinet Fortios 5.4.0
Fortinet Fortios 5.4.1
Fortinet Fortios 5.4.2
Fortinet Fortios 5.4.4
Fortinet Fortios 5.4.5
4.3
CVSSv2
CVE-2017-3132
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and previous versions allows malicious users to Execute unauthorized code or commands via the action input during the activation of a FortiToken.
Fortinet Fortios
1 EDB exploit
4.3
CVSSv2
CVE-2017-3133
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and previous versions allows malicious users to execute unauthorized code or commands via the Replacement Message HTML for SSL-VPN.
Fortinet Fortios
1 EDB exploit
4.3
CVSSv2
CVE-2017-3127
A Cross-Site Scripting vulnerability in Fortinet FortiGate 5.2.0 up to and including 5.2.10 allows malicious user to execute unauthorized code or commands via the srcintf parameter during Firewall Policy Creation.
Fortinet Fortios 5.2.7
Fortinet Fortios 5.2.9
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.10
Fortinet Fortios 5.2.6
Fortinet Fortios 5.2.4
Fortinet Fortios 5.2.3
Fortinet Fortios 5.2.5
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.8
4.3
CVSSv2
CVE-2016-7541
Long lived sessions in Fortinet FortiGate devices with FortiOS 5.x prior to 5.4.0 could violate a security policy during IPS signature updates when the FortiGate's IPSengine is configured in flow mode. All FortiGate versions with IPS configured in proxy mode (the default mod...
Fortinet Fortios 5.2.7
Fortinet Fortios 5.0.9
Fortinet Fortios 5.0.14
Fortinet Fortios 5.0.10
Fortinet Fortios 5.2.9
Fortinet Fortios 5.2.1
Fortinet Fortios 5.0.5
Fortinet Fortios 5.0.1
Fortinet Fortios 5.0.13
Fortinet Fortios 5.0.2
Fortinet Fortios 5.2.10
Fortinet Fortios 5.2.6
Fortinet Fortios 5.2.4
Fortinet Fortios 5.0.7
Fortinet Fortios 5.0.4
Fortinet Fortios 5.0.11
Fortinet Fortios 5.0.8
Fortinet Fortios 5.2.3
Fortinet Fortios 5.2.5
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.2
Fortinet Fortios 5.0.0
4.3
CVSSv2
CVE-2016-8492
The implementation of an ANSI X9.31 RNG in Fortinet FortiGate allows malicious users to gain unauthorized read access to data handled by the device via IPSec/TLS decryption.
Fortinet Fortios 4.3.13
Fortinet Fortios 4.3.17
Fortinet Fortios 4.3.12
Fortinet Fortios
Fortinet Fortios 4.3.0
Fortinet Fortios 4.3.16
Fortinet Fortios 4.3.10
Fortinet Fortios 4.3.14
Fortinet Fortios 4.3.15
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »