Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
8.2
CVSSv3
CVE-2023-43555
Information disclosure in Video while parsing mp2 clip with invalid section length.
NA
CVE-2024-23667
An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 up to and including 7.0.4 and 6.3.0 and 6.2.3 up to and including 6.2.4 and 6.0.2 allows malicious user to execute unauthorized code or commands via HTTP requests or CLI.
NA
CVE-2024-23668
An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 up to and including 7.0.4 and 6.3.0 and 6.2.3 up to and including 6.2.4 and 6.0.2 allows malicious user to execute unauthorized code or commands via HTTP requests or CLI.
9.3
CVSSv3
CVE-2023-43538
Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.
NA
CVE-2024-21478
transient DOS when setting up a fence callback to free a KGSL memory entry object during DMA.
7.5
CVSSv3
CVE-2024-23363
Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management frame.
6.7
CVSSv3
CVE-2023-43544
Memory corruption when IPC callback handle is used after it has been released during register callback by another thread.
7.8
CVSSv3
CVE-2023-43542
Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked.
9.1
CVSSv3
CVE-2023-43551
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.
NA
CVE-2024-23664
A URL redirection to untrusted site ('open redirect') in Fortinet FortiAuthenticator version 6.6.0, version 6.5.3 and below, version 6.4.9 and below may allow an malicious user to to redirect users to an arbitrary website via a crafted URL.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »