Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortios 5.2.2 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2015-1880
Cross-site scripting (XSS) vulnerability in the sslvpn login page in Fortinet FortiOS 5.2.x prior to 5.2.3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.1
4.3
CVSSv2
CVE-2014-8616
Multiple cross-site scripting (XSS) vulnerabilities in Fortinet FortiOS 5.2.x prior to 5.2.3 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors to the (1) user group or (2) vpn template menus.
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.2
4.3
CVSSv2
CVE-2017-3127
A Cross-Site Scripting vulnerability in Fortinet FortiGate 5.2.0 up to and including 5.2.10 allows malicious user to execute unauthorized code or commands via the srcintf parameter during Firewall Policy Creation.
Fortinet Fortios 5.2.3
Fortinet Fortios 5.2.4
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.9
Fortinet Fortios 5.2.10
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.7
Fortinet Fortios 5.2.8
Fortinet Fortios 5.2.5
Fortinet Fortios 5.2.6
4
CVSSv2
CVE-2016-7542
A read-only administrator on Fortinet devices with FortiOS 5.2.x prior to 5.2.10 GA and 5.4.x prior to 5.4.2 GA may have access to read-write administrators password hashes (not including super-admins) stored on the appliance via the webui REST API, and may therefore be able to c...
Fortinet Fortios 5.4.1
Fortinet Fortios 5.4.0
Fortinet Fortios 5.2.6
Fortinet Fortios 5.2.7
Fortinet Fortios 5.2.4
Fortinet Fortios 5.2.5
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.8
Fortinet Fortios 5.2.9
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.3
6.4
CVSSv2
CVE-2015-2323
FortiOS 5.0.x prior to 5.0.12 and 5.2.x prior to 5.2.4 supports anonymous, export, RC4, and possibly other weak ciphers when using TLS to connect to FortiGuard servers, which allows man-in-the-middle malicious users to spoof TLS content by modifying packets.
Fortinet Fortios 5.0.5
Fortinet Fortios 5.0.6
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.2
Fortinet Fortios 5.0.2
Fortinet Fortios 5.0.3
Fortinet Fortios 5.0.4
Fortinet Fortios 5.0.11
Fortinet Fortios 5.2.0
Fortinet Fortios 5.0.7
Fortinet Fortios 5.0.8
Fortinet Fortios 5.2.3
Fortinet Fortios 5.0.0
Fortinet Fortios 5.0.1
Fortinet Fortios 5.0.9
Fortinet Fortios 5.0.10
4.3
CVSSv2
CVE-2016-3978
The Web User Interface (WebUI) in FortiOS 5.0.x prior to 5.0.13, 5.2.x prior to 5.2.3, and 5.4.x prior to 5.4.0 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks or cross-site scripting (XSS) attacks via the "redirect" p...
Fortinet Fortios 5.0.1
Fortinet Fortios 5.0.0
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.1
Fortinet Fortios 5.0.10
Fortinet Fortios 5.0.9
Fortinet Fortios 5.0.8
Fortinet Fortios 5.0.7
Fortinet Fortios 5.0.11
Fortinet Fortios 5.0.6
Fortinet Fortios 5.0.4
Fortinet Fortios 5.0.2
Fortinet Fortios 5.2.0
Fortinet Fortios 5.0.12
Fortinet Fortios 5.0.5
Fortinet Fortios 5.0.3
Fortinet Fortios 5.4
3.5
CVSSv2
CVE-2017-7735
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.2.0 up to and including 5.2.11 and 5.4.0 up to and including 5.4.4 allows malicious users to execute unauthorized code or commands via the "Groups" input while creating or editing User Groups.
Fortinet Fortios 5.4.3
Fortinet Fortios 5.4.1
Fortinet Fortios 5.2.3
Fortinet Fortios 5.4.0
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.8
Fortinet Fortios 5.2.9
Fortinet Fortios 5.2.10
Fortinet Fortios 5.2.11
Fortinet Fortios 5.4.4
Fortinet Fortios 5.4.2
Fortinet Fortios 5.2.4
Fortinet Fortios 5.2.6
Fortinet Fortios 5.2.5
Fortinet Fortios 5.2.7
4.3
CVSSv2
CVE-2017-7739
A reflected Cross-site Scripting (XSS) vulnerability in web proxy disclaimer response web pages in Fortinet FortiOS 5.6.0, 5.4.0 to 5.4.5, 5.2.0 to 5.2.11 allows an unauthenticated malicious user to inject arbitrary web script or HTML in the context of the victim's browser v...
Fortinet Fortios 5.2.10
Fortinet Fortios 5.2.11
Fortinet Fortios 5.4.0
Fortinet Fortios 5.4.1
Fortinet Fortios 5.2.6
Fortinet Fortios 5.2.8
Fortinet Fortios 5.4.3
Fortinet Fortios 5.4.5
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.3
Fortinet Fortios 5.2.4
Fortinet Fortios 5.6.0
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.5
Fortinet Fortios 5.2.7
Fortinet Fortios 5.2.9
Fortinet Fortios 5.4.2
Fortinet Fortios 5.4.4
3.5
CVSSv2
CVE-2017-3128
A stored XSS (Cross-Site-Scripting) vulnerability in Fortinet FortiOS allows malicious users to execute unauthorized code or commands via the policy global-label parameter.
Fortinet Fortios 5.2.4
Fortinet Fortios 5.2.5
Fortinet Fortios 5.0.1
Fortinet Fortios 5.0.2
Fortinet Fortios 5.0.9
Fortinet Fortios 5.0.10
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.8
Fortinet Fortios 5.2.9
Fortinet Fortios 5.0.5
Fortinet Fortios 5.0.6
Fortinet Fortios 5.0.13
Fortinet Fortios 5.0.14
Fortinet Fortios 5.2.6
Fortinet Fortios 5.2.7
Fortinet Fortios 5.0.3
Fortinet Fortios 5.0.4
Fortinet Fortios 5.0.11
Fortinet Fortios 5.0.12
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.3
4.3
CVSSv2
CVE-2016-7541
Long lived sessions in Fortinet FortiGate devices with FortiOS 5.x prior to 5.4.0 could violate a security policy during IPS signature updates when the FortiGate's IPSengine is configured in flow mode. All FortiGate versions with IPS configured in proxy mode (the default mod...
Fortinet Fortios 5.0.14
Fortinet Fortios 5.2.8
Fortinet Fortios 5.2.1
Fortinet Fortios 5.0.13
Fortinet Fortios 5.0.6
Fortinet Fortios 5.0.4
Fortinet Fortios 5.2.10
Fortinet Fortios 5.0.12
Fortinet Fortios 5.0.11
Fortinet Fortios 5.0.10
Fortinet Fortios 5.0.9
Fortinet Fortios 5.0.8
Fortinet Fortios 5.2.6
Fortinet Fortios 5.2.5
Fortinet Fortios 5.2.4
Fortinet Fortios 5.2.3
Fortinet Fortios 5.0.3
Fortinet Fortios 5.0.2
Fortinet Fortios 5.0.1
Fortinet Fortios 5.0.0
Fortinet Fortios 5.2.9
Fortinet Fortios 5.2.7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
brute force
CVE-2024-24908
open redirect
CVE-2024-31497
CVE-2023-45866
CVE-2024-4135
CVE-2024-25523
cache poisoning
CVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »