Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-36548
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM version 8.6.0 up to and including 8.6.5 and 8.5.0 up to and including 8.5.4 allows malicious user to execute unauthorized code or commands via specifically ...
Fortinet Fortiwlm
9.8
CVSSv3
CVE-2023-36549
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM version 8.6.0 up to and including 8.6.5 and 8.5.0 up to and including 8.5.4 allows malicious user to execute unauthorized code or commands via specifically ...
Fortinet Fortiwlm
9.8
CVSSv3
CVE-2023-36550
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM version 8.6.0 up to and including 8.6.5 and 8.5.0 up to and including 8.5.4 allows malicious user to execute unauthorized code or commands via specifically ...
Fortinet Fortiwlm
9.8
CVSSv3
CVE-2023-34992
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiSIEM version 7.0.0 and 6.7.0 up to and including 6.7.5 and 6.6.0 up to and including 6.6.3 and 6.5.0 up to and including 6.5.1 and 6.4.0 up to and including 6.4...
Fortinet Fortisiem 6.4.1
Fortinet Fortisiem 6.4.0
Fortinet Fortisiem 6.5.0
Fortinet Fortisiem 6.5.1
Fortinet Fortisiem 6.4.2
Fortinet Fortisiem
Fortinet Fortisiem 7.0.0
2 Articles
9.8
CVSSv3
CVE-2023-34993
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM version 8.6.0 up to and including 8.6.5 and 8.5.0 up to and including 8.5.4 allows malicious user to execute unauthorized code or commands via specifically ...
Fortinet Fortiwlm
9.8
CVSSv3
CVE-2023-33308
A stack-based overflow vulnerability [CWE-124] in Fortinet FortiOS version 7.0.0 up to and including 7.0.10 and 7.2.0 up to and including 7.2.3 and FortiProxy version 7.0.0 up to and including 7.0.9 and 7.2.0 up to and including 7.2.2 allows a remote unauthenticated malicious use...
Fortinet Fortiproxy 7.2.0
Fortinet Fortiproxy 7.2.1
Fortinet Fortios
Fortinet Fortiproxy 7.2.2
Fortinet Fortiproxy
9.8
CVSSv3
CVE-2023-28001
An insufficient session expiration in Fortinet FortiOS 7.0.0 - 7.0.12 and 7.2.0 - 7.2.4 allows an malicious user to execute unauthorized code or commands via reusing the session of a deleted user in the REST API.
Fortinet Fortios
9.8
CVSSv3
CVE-2023-33299
A deserialization of untrusted data in Fortinet FortiNAC below 7.2.1, below 9.4.3, below 9.2.8 and all earlier versions of 8.x allows malicious user to execute unauthorized code or commands via specifically crafted request on inter-server communication port. Note FortiNAC version...
Fortinet Fortinac
Fortinet Fortinac 8.3.7
Fortinet Fortinac 9.4.0
Fortinet Fortinac 9.4.1
Fortinet Fortinac 9.4.2
Fortinet Fortinac 7.2.0
Fortinet Fortinac 7.2.1
9.8
CVSSv3
CVE-2023-27997
A heap-based buffer overflow vulnerability [CWE-122] in FortiOS version 7.2.4 and below, version 7.0.11 and below, version 6.4.12 and below, version 6.0.16 and below and FortiProxy version 7.2.3 and below, version 7.0.9 and below, version 2.0.12 and below, version 1.2 all version...
Fortinet Fortiproxy
Fortinet Fortios
Fortinet Fortios-6k7k 7.0.5
Fortinet Fortios-6k7k 7.0.10
Fortinet Fortios-6k7k 6.4.8
Fortinet Fortios-6k7k 6.4.6
Fortinet Fortios-6k7k 6.4.2
Fortinet Fortios-6k7k 6.4.12
Fortinet Fortios-6k7k 6.4.10
Fortinet Fortios-6k7k 6.2.9
Fortinet Fortios-6k7k 6.2.7
Fortinet Fortios-6k7k 6.2.6
Fortinet Fortios-6k7k 6.2.4
Fortinet Fortios-6k7k
Fortinet Fortios-6k7k 6.0.16
Fortinet Fortios-6k7k 6.0.15
Fortinet Fortios-6k7k 6.0.14
Fortinet Fortios-6k7k 6.0.13
Fortinet Fortios-6k7k 6.0.12
Fortinet Fortios-6k7k 6.0.10
7 Github repositories
4 Articles
9.8
CVSSv3
CVE-2023-26204
A plaintext storage of a password vulnerability [CWE-256] in FortiSIEM 6.7 all versions, 6.6 all versions, 6.5 all versions, 6.4 all versions, 6.3 all versions, 6.2 all versions, 6.1 all versions, 5.4 all versions, 5.3 all versions may allow an attacker able to access user DB con...
Fortinet Fortisiem 6.4.1
Fortinet Fortisiem 6.4.0
Fortinet Fortisiem
Fortinet Fortisiem 6.2.1
Fortinet Fortisiem 6.2.0
Fortinet Fortisiem 5.4.0
Fortinet Fortisiem 6.5.0
Fortinet Fortisiem 6.5.1
Fortinet Fortisiem 6.4.2
Fortinet Fortisiem 6.1.0
Fortinet Fortisiem 6.1.1
Fortinet Fortisiem 6.1.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »