Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

fortinet fortios 7.2.10 vulnerabilities and exploits

(subscribe to this query)
3.5
CVSSv3

CVE-2024-46669

An Integer Overflow or Wraparound vulnerability [CWE-190] in version 7.4.4 and below, version 7.2.10 and below; FortiSASE version 23.4.b FortiOS tenant IPsec IKE service may allow an authenticated malicious user to crash the IPsec tunnel via crafted requests, resulting in potenti...
Fortinet Fortios 7.4.4Fortinet Fortios 7.4.3Fortinet Fortios 7.4.2Fortinet Fortios 7.4.1Fortinet Fortios 7.4.0Fortinet Fortios 7.2.10Fortinet Fortios 7.2.9Fortinet Fortios 7.2.8Fortinet Fortios 7.2.7Fortinet Fortios 7.2.6Fortinet Fortios 7.2.5Fortinet Fortios 7.2.4
2.3
CVSSv3

CVE-2024-32122

A storing passwords in a recoverable format in Fortinet FortiOS versions 7.2.0 up to and including 7.2.1 allows malicious user to information disclosure via modification of LDAP server IP to point to a malicious server.
Fortinet Fortios 7.4.7Fortinet Fortios 7.4.6Fortinet Fortios 7.4.5Fortinet Fortios 7.4.4Fortinet Fortios 7.4.3Fortinet Fortios 7.4.2Fortinet Fortios 7.4.1Fortinet Fortios 7.4.0Fortinet Fortios 7.2.11Fortinet Fortios 7.2.10Fortinet Fortios 7.2.9Fortinet Fortios 7.2.8
5.3
CVSSv3

CVE-2024-46666

An allocation of resources without limits or throttling [CWE-770] vulnerability in FortiOS versions 7.6.0, versions 7.4.4 up to and including 7.4.0, 7.2 all versions, 7.0 all versions, 6.4 all versions may allow a remote unauthenticated malicious user to prevent access to the GUI...
Fortinet Fortios 7.6.0Fortinet Fortios 7.4.4Fortinet Fortios 7.4.3Fortinet Fortios 7.4.2Fortinet Fortios 7.4.1Fortinet Fortios 7.4.0Fortinet Fortios 7.2.10Fortinet Fortios 7.2.9Fortinet Fortios 7.2.8Fortinet Fortios 7.2.7Fortinet Fortios 7.2.6Fortinet Fortios 7.2.5
5
CVSSv3

CVE-2023-46715

An origin validation error [CWE-346] vulnerability in Fortinet FortiOS IPSec VPN version 7.4.0 up to and including 7.4.1 and version 7.2.6 and below allows an authenticated IPSec VPN user with dynamic IP addressing to send (but not receive) packets spoofing the IP of another user...
Fortinet Fortios 7.4.1Fortinet Fortios 7.4.0Fortinet Fortios 7.2.10Fortinet Fortios 7.2.9Fortinet Fortios 7.2.8Fortinet Fortios 7.2.7Fortinet Fortios 7.2.6Fortinet Fortios 7.2.5Fortinet Fortios 7.2.4Fortinet Fortios 7.2.3Fortinet Fortios 7.2.2Fortinet Fortios 7.2.1
3.7
CVSSv3

CVE-2024-52963

A out-of-bounds write in Fortinet FortiOS versions 7.6.0, 7.4.0 up to and including 7.4.6, 7.2.0 up to and including 7.2.10, 7.0.0 up to and including 7.0.16, 6.4.0 up to and including 6.4.15 allows malicious user to trigger a denial of service via specially crafted packets.
Fortinet Fortios 7.6.0Fortinet Fortios 7.4.6Fortinet Fortios 7.4.5Fortinet Fortios 7.4.4Fortinet Fortios 7.4.3Fortinet Fortios 7.4.2Fortinet Fortios 7.4.1Fortinet Fortios 7.4.0Fortinet Fortios 7.2.10Fortinet Fortios 7.2.9Fortinet Fortios 7.2.8Fortinet Fortios 7.2.7
9
CVSSv3

CVE-2024-48886

A weak authentication in Fortinet FortiOS versions 7.4.0 up to and including 7.4.4, 7.2.0 up to and including 7.2.8, 7.0.0 up to and including 7.0.15, 6.4.0 up to and including 6.4.15, FortiProxy versions 7.4.0 up to and including 7.4.4, 7.2.0 up to and including 7.2.10, 7.0.0 up...
Fortinet Fortios 7.4.4Fortinet Fortios 7.4.3Fortinet Fortios 7.4.2Fortinet Fortios 7.4.1Fortinet Fortios 7.4.0Fortinet Fortios 7.2.8Fortinet Fortios 7.2.7Fortinet Fortios 7.2.6Fortinet Fortios 7.2.5Fortinet Fortios 7.2.4Fortinet Fortios 7.2.3Fortinet Fortios 7.2.2
7.2
CVSSv3

CVE-2024-45324

A use of externally-controlled format string vulnerability [CWE-134] in FortiOS version 7.4.0 up to and including 7.4.4, version 7.2.0 up to and including 7.2.9, version 7.0.0 up to and including 7.0.15 and prior to 6.4.15, FortiProxy version 7.4.0 up to and including 7.4.6, vers...
Fortinet Fortipam 1.4.2Fortinet Fortipam 1.4.1Fortinet Fortipam 1.4.0Fortinet Fortipam 1.3.1Fortinet Fortipam 1.3.0Fortinet Fortipam 1.2.0Fortinet Fortipam 1.1.2Fortinet Fortipam 1.1.1Fortinet Fortipam 1.1.0Fortinet Fortipam 1.0.3Fortinet Fortipam 1.0.2Fortinet Fortipam 1.0.1
3.1
CVSSv3

CVE-2024-50565

A improper restriction of communication channel to intended endpoints vulnerability [CWE-923] in Fortinet FortiOS version 7.4.0 up to and including 7.4.3, 7.2.0 up to and including 7.2.7, 7.0.0 up to and including 7.0.14, 6.4.0 up to and including 6.4.15 and 6.2.0 up to and inclu...
Fortinet Fortios 7.4.4Fortinet Fortios 7.4.3Fortinet Fortios 7.4.2Fortinet Fortios 7.4.1Fortinet Fortios 7.4.0Fortinet Fortios 7.2.8Fortinet Fortios 7.2.7Fortinet Fortios 7.2.6Fortinet Fortios 7.2.5Fortinet Fortios 7.2.4Fortinet Fortios 7.2.3Fortinet Fortios 7.2.2
4.7
CVSSv3

CVE-2024-26015

An incorrect parsing of numbers with different radices vulnerability [CWE-1389] in FortiProxy version 7.4.3 and below, version 7.2.10 and below, version 7.0.17 and below and FortiOS version 7.4.3 and below, version 7.2.8 and below, version 7.0.15 and below IP address validation f...
Fortinet FortiproxyFortinet Fortios
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-48117themovationCVE-2025-47556CVE-2025-4794log injectionprivilegeCVE-2025-4427rozarioshoutCVE-2025-48138css3 compare pricing tables for wordpressCVE-2023-21563malicious code‎on">CVE-2025-48114
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook