Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortios 5.2.4 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2017-3127
A Cross-Site Scripting vulnerability in Fortinet FortiGate 5.2.0 up to and including 5.2.10 allows malicious user to execute unauthorized code or commands via the srcintf parameter during Firewall Policy Creation.
Fortinet Fortios 5.2.3
Fortinet Fortios 5.2.4
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.9
Fortinet Fortios 5.2.10
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.7
Fortinet Fortios 5.2.8
Fortinet Fortios 5.2.5
Fortinet Fortios 5.2.6
356
VMScore
CVE-2016-7542
A read-only administrator on Fortinet devices with FortiOS 5.2.x prior to 5.2.10 GA and 5.4.x prior to 5.4.2 GA may have access to read-write administrators password hashes (not including super-admins) stored on the appliance via the webui REST API, and may therefore be able to c...
Fortinet Fortios 5.4.1
Fortinet Fortios 5.4.0
Fortinet Fortios 5.2.6
Fortinet Fortios 5.2.7
Fortinet Fortios 5.2.4
Fortinet Fortios 5.2.5
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.8
Fortinet Fortios 5.2.9
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.3
312
VMScore
CVE-2017-7735
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.2.0 up to and including 5.2.11 and 5.4.0 up to and including 5.4.4 allows malicious users to execute unauthorized code or commands via the "Groups" input while creating or editing User Groups.
Fortinet Fortios 5.4.3
Fortinet Fortios 5.4.1
Fortinet Fortios 5.2.3
Fortinet Fortios 5.4.0
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.8
Fortinet Fortios 5.2.9
Fortinet Fortios 5.2.10
Fortinet Fortios 5.2.11
Fortinet Fortios 5.4.4
Fortinet Fortios 5.4.2
Fortinet Fortios 5.2.4
Fortinet Fortios 5.2.6
Fortinet Fortios 5.2.5
Fortinet Fortios 5.2.7
383
VMScore
CVE-2017-7739
A reflected Cross-site Scripting (XSS) vulnerability in web proxy disclaimer response web pages in Fortinet FortiOS 5.6.0, 5.4.0 to 5.4.5, 5.2.0 to 5.2.11 allows an unauthenticated malicious user to inject arbitrary web script or HTML in the context of the victim's browser v...
Fortinet Fortios 5.2.10
Fortinet Fortios 5.2.11
Fortinet Fortios 5.4.0
Fortinet Fortios 5.4.1
Fortinet Fortios 5.2.6
Fortinet Fortios 5.2.8
Fortinet Fortios 5.4.3
Fortinet Fortios 5.4.5
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.3
Fortinet Fortios 5.2.4
Fortinet Fortios 5.6.0
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.5
Fortinet Fortios 5.2.7
Fortinet Fortios 5.2.9
Fortinet Fortios 5.4.2
Fortinet Fortios 5.4.4
312
VMScore
CVE-2017-3128
A stored XSS (Cross-Site-Scripting) vulnerability in Fortinet FortiOS allows malicious users to execute unauthorized code or commands via the policy global-label parameter.
Fortinet Fortios 5.2.4
Fortinet Fortios 5.2.5
Fortinet Fortios 5.0.1
Fortinet Fortios 5.0.2
Fortinet Fortios 5.0.9
Fortinet Fortios 5.0.10
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.8
Fortinet Fortios 5.2.9
Fortinet Fortios 5.0.5
Fortinet Fortios 5.0.6
Fortinet Fortios 5.0.13
Fortinet Fortios 5.0.14
Fortinet Fortios 5.2.6
Fortinet Fortios 5.2.7
Fortinet Fortios 5.0.3
Fortinet Fortios 5.0.4
Fortinet Fortios 5.0.11
Fortinet Fortios 5.0.12
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.3
383
VMScore
CVE-2016-7541
Long lived sessions in Fortinet FortiGate devices with FortiOS 5.x prior to 5.4.0 could violate a security policy during IPS signature updates when the FortiGate's IPSengine is configured in flow mode. All FortiGate versions with IPS configured in proxy mode (the default mod...
Fortinet Fortios 5.0.14
Fortinet Fortios 5.2.8
Fortinet Fortios 5.2.1
Fortinet Fortios 5.0.13
Fortinet Fortios 5.0.6
Fortinet Fortios 5.0.4
Fortinet Fortios 5.2.10
Fortinet Fortios 5.0.12
Fortinet Fortios 5.0.11
Fortinet Fortios 5.0.10
Fortinet Fortios 5.0.9
Fortinet Fortios 5.0.8
Fortinet Fortios 5.2.6
Fortinet Fortios 5.2.5
Fortinet Fortios 5.2.4
Fortinet Fortios 5.2.3
Fortinet Fortios 5.0.3
Fortinet Fortios 5.0.2
Fortinet Fortios 5.0.1
Fortinet Fortios 5.0.0
Fortinet Fortios 5.2.9
Fortinet Fortios 5.2.7
445
VMScore
CVE-2017-3130
An information disclosure vulnerability in Fortinet FortiOS 5.6.0, 5.4.4 and below versions allows malicious user to get FortiOS version info by inspecting FortiOS IKE VendorID packets.
Fortinet Fortios 5.4.2
Fortinet Fortios 5.4.3
Fortinet Fortios 5.4.4
Fortinet Fortios 5.0.0
Fortinet Fortios 5.0.13
Fortinet Fortios 5.0.14
Fortinet Fortios 5.2.0
Fortinet Fortios 5.2.1
Fortinet Fortios 5.6.0
Fortinet Fortios 5.4.1
Fortinet Fortios 5.0.1
Fortinet Fortios 5.0.3
Fortinet Fortios 5.0.10
Fortinet Fortios 5.0.12
Fortinet Fortios 5.2.2
Fortinet Fortios 5.2.4
Fortinet Fortios 5.2.6
Fortinet Fortios 5.0.5
Fortinet Fortios 5.0.6
Fortinet Fortios 5.0.7
Fortinet Fortios 5.0.8
Fortinet Fortios 5.2.7
570
VMScore
CVE-2015-2323
FortiOS 5.0.x prior to 5.0.12 and 5.2.x prior to 5.2.4 supports anonymous, export, RC4, and possibly other weak ciphers when using TLS to connect to FortiGuard servers, which allows man-in-the-middle malicious users to spoof TLS content by modifying packets.
Fortinet Fortios 5.0.5
Fortinet Fortios 5.0.6
Fortinet Fortios 5.2.1
Fortinet Fortios 5.2.2
Fortinet Fortios 5.0.2
Fortinet Fortios 5.0.3
Fortinet Fortios 5.0.4
Fortinet Fortios 5.0.11
Fortinet Fortios 5.2.0
Fortinet Fortios 5.0.7
Fortinet Fortios 5.0.8
Fortinet Fortios 5.2.3
Fortinet Fortios 5.0.0
Fortinet Fortios 5.0.1
Fortinet Fortios 5.0.9
Fortinet Fortios 5.0.10
383
VMScore
CVE-2015-3626
Cross-site scripting (XSS) vulnerability in the DHCP Monitor page in the Web User Interface (WebUI) in Fortinet FortiOS prior to 5.2.4 on FortiGate devices allows remote malicious users to inject arbitrary web script or HTML via a crafted hostname.
Fortinet Fortios
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started