fortinet fortios 7.6.0 vulnerabilities and exploits

(subscribe to this query)

An insertion of sensitive information into sent data vulnerability [CWE-201] in FortiOS 7.6.0, 7.4.0 up to and including 7.4.4 may allow an attacker in a man-in-the-middle position to retrieve the RADIUS accounting server shared secret via intercepting accounting-requests.

Fortinet Fortios 7.6.0 Fortinet Fortios 7.4.4 Fortinet Fortios 7.4.3 Fortinet Fortios 7.4.2 Fortinet Fortios 7.4.1 Fortinet Fortios 7.4.0 Fortinet Fortios

A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiManager versions 7.6.0 up to and including 7.6.1, 7.4.1 up to and including 7.4.3, FortiOS versions 7.6.0, 7.4.0 up to and including 7.4.4, 7.2.5 up to and including 7.2.9,...

Fortinet Fortimanager 7.6.1 Fortinet Fortimanager 7.6.0 Fortinet Fortimanager 7.4.3 Fortinet Fortimanager 7.4.2 Fortinet Fortimanager 7.4.1 Fortinet Fortios 7.6.0 Fortinet Fortios 7.4.4 Fortinet Fortios 7.4.3 Fortinet Fortios 7.4.2 Fortinet Fortios 7.4.1 Fortinet Fortios 7.4.0 Fortinet Fortios 7.2.9

An improper neutralization of crlf sequences in http headers ('http response splitting') in Fortinet FortiOS 7.2.0 up to and including 7.6.0, FortiProxy 7.2.0 up to and including 7.4.5 allows malicious user to execute unauthorized code or commands via crafted HTTP heade...

Fortinet Fortios 7.6.0 Fortinet Fortios 7.4.4 Fortinet Fortios 7.4.3 Fortinet Fortios 7.4.2 Fortinet Fortios 7.4.1 Fortinet Fortios 7.4.0 Fortinet Fortios 7.2.8 Fortinet Fortios 7.2.7 Fortinet Fortios 7.2.6 Fortinet Fortios 7.2.5 Fortinet Fortios 7.2.4 Fortinet Fortios 7.2.3

An Out-of-bounds Read vulnerability [CWE-125] in FortiOS version 7.6.0, version 7.4.4 and below, version 7.2.9 and below and FortiSASE FortiOS tenant version 24.3.b IPsec IKE service may allow an unauthenticated remote malicious user to trigger memory consumption leading to Denia...

Fortinet Fortios 7.6.0 Fortinet Fortios 7.4.4 Fortinet Fortios 7.4.3 Fortinet Fortios 7.4.2 Fortinet Fortios 7.4.1 Fortinet Fortios 7.4.0 Fortinet Fortios 7.2.9 Fortinet Fortios 7.2.8 Fortinet Fortios 7.2.7 Fortinet Fortios 7.2.6 Fortinet Fortios 7.2.5 Fortinet Fortios 7.2.4

An incorrect privilege assignment vulnerability [CWE-266] in Fortinet FortiOS version 7.6.0, 7.4.0 up to and including 7.4.4, 7.2.0 up to and including 7.2.9 and prior to 7.0.15 allows an authenticated admin whose access profile has the Security Fabric permission to escalate thei...

Fortinet Fortios 7.6.0 Fortinet Fortios 7.4.4 Fortinet Fortios 7.4.3 Fortinet Fortios 7.4.2 Fortinet Fortios 7.4.1 Fortinet Fortios 7.4.0 Fortinet Fortios 7.2.9 Fortinet Fortios 7.2.8 Fortinet Fortios 7.2.7 Fortinet Fortios 7.2.6 Fortinet Fortios 7.2.5 Fortinet Fortios 7.2.4

An allocation of resources without limits or throttling [CWE-770] vulnerability in FortiOS versions 7.6.0, versions 7.4.4 up to and including 7.4.0, 7.2 all versions, 7.0 all versions, 6.4 all versions may allow a remote unauthenticated malicious user to prevent access to the GUI...

Fortinet Fortios 7.6.0 Fortinet Fortios 7.4.4 Fortinet Fortios 7.4.3 Fortinet Fortios 7.4.2 Fortinet Fortios 7.4.1 Fortinet Fortios 7.4.0 Fortinet Fortios 7.2.10 Fortinet Fortios 7.2.9 Fortinet Fortios 7.2.8 Fortinet Fortios 7.2.7 Fortinet Fortios 7.2.6 Fortinet Fortios 7.2.5

A out-of-bounds write in Fortinet FortiOS versions 7.6.0, 7.4.0 up to and including 7.4.6, 7.2.0 up to and including 7.2.10, 7.0.0 up to and including 7.0.16, 6.4.0 up to and including 6.4.15 allows malicious user to trigger a denial of service via specially crafted packets.

Fortinet Fortios 7.6.0 Fortinet Fortios 7.4.6 Fortinet Fortios 7.4.5 Fortinet Fortios 7.4.4 Fortinet Fortios 7.4.3 Fortinet Fortios 7.4.2 Fortinet Fortios 7.4.1 Fortinet Fortios 7.4.0 Fortinet Fortios 7.2.10 Fortinet Fortios 7.2.9 Fortinet Fortios 7.2.8 Fortinet Fortios 7.2.7

A weak authentication in Fortinet FortiManager Cloud, FortiAnalyzer versions 7.6.0 up to and including 7.6.1, 7.4.1 up to and including 7.4.3, FortiAnalyzer Cloud versions 7.4.1 up to and including 7.4.3, FortiManager versions 7.6.0 up to and including 7.6.1, 7.4.1 up to and incl...

Fortinet Fortianalyzer 7.6.1 Fortinet Fortianalyzer 7.6.0 Fortinet Fortianalyzer 7.4.3 Fortinet Fortianalyzer 7.4.2 Fortinet Fortianalyzer 7.4.1 Fortinet Fortimanager 7.6.1 Fortinet Fortimanager 7.6.0 Fortinet Fortimanager 7.4.3 Fortinet Fortimanager 7.4.2 Fortinet Fortimanager 7.4.1 Fortinet Fortianalyzer Fortinet Fortimanager

A weak authentication in Fortinet FortiOS versions 7.4.0 up to and including 7.4.4, 7.2.0 up to and including 7.2.8, 7.0.0 up to and including 7.0.15, 6.4.0 up to and including 6.4.15, FortiProxy versions 7.4.0 up to and including 7.4.4, 7.2.0 up to and including 7.2.10, 7.0.0 up...

Fortinet Fortios 7.4.4 Fortinet Fortios 7.4.3 Fortinet Fortios 7.4.2 Fortinet Fortios 7.4.1 Fortinet Fortios 7.4.0 Fortinet Fortios 7.2.8 Fortinet Fortios 7.2.7 Fortinet Fortios 7.2.6 Fortinet Fortios 7.2.5 Fortinet Fortios 7.2.4 Fortinet Fortios 7.2.3 Fortinet Fortios 7.2.2

A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiRecorder versions 7.2.0 up to and including 7.2.1, 7.0.0 up to and including 7.0.4, FortiWeb versions 7.6.0, 7.4.0 up to and including 7.4.4, 7.2.0 up to and including 7.2....

Fortinet Fortirecorder 7.2.1 Fortinet Fortirecorder 7.2.0 Fortinet Fortirecorder 7.0.4 Fortinet Fortirecorder 7.0.3 Fortinet Fortirecorder 7.0.2 Fortinet Fortirecorder 7.0.1 Fortinet Fortirecorder 7.0.0 Fortinet Fortivoice 7.0.4 Fortinet Fortivoice 7.0.3 Fortinet Fortivoice 7.0.2 Fortinet Fortivoice 7.0.1 Fortinet Fortivoice 7.0.0

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook