Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortios 7.4.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-42789
A out-of-bounds write in Fortinet FortiOS 7.4.0 up to and including 7.4.1, 7.2.0 up to and including 7.2.5, 7.0.0 up to and including 7.0.12, 6.4.0 up to and including 6.4.14, 6.2.0 up to and including 6.2.15, FortiProxy 7.4.0, 7.2.0 up to and including 7.2.6, 7.0.0 up to and inc...
Fortinet Fortios
Fortinet Fortios 7.4.0
Fortinet Fortiproxy
Fortinet Fortiproxy 7.4.0
Fortinet Fortios 7.4.1
2 Articles
NA
CVE-2023-44250
An improper privilege management vulnerability [CWE-269] in a Fortinet FortiOS HA cluster version 7.4.0 up to and including 7.4.1 and 7.2.5 and in a FortiProxy HA cluster version 7.4.0 up to and including 7.4.1 allows an authenticated malicious user to perform elevated actions vi...
Fortinet Fortios 7.4.0
Fortinet Fortios 7.2.5
Fortinet Fortiproxy 7.4.0
Fortinet Fortiproxy 7.4.1
Fortinet Fortios 7.4.1
NA
CVE-2023-45586
An insufficient verification of data authenticity vulnerability [CWE-345] in Fortinet FortiOS SSL-VPN tunnel mode version 7.4.0 up to and including 7.4.1, version 7.2.0 up to and including 7.2.7 and prior to 7.0.12 & FortiProxy SSL-VPN tunnel mode version 7.4.0 up to and incl...
Fortinet Fortiproxy
Fortinet Fortiproxy 7.4.0
Fortinet Fortiproxy 7.4.1
Fortinet Fortios 7.4.0
Fortinet Fortios 7.4.1
Fortinet Fortios
NA
CVE-2023-47537
An improper certificate validation vulnerability in Fortinet FortiOS 7.0.0 - 7.0.13, 7.2.0 - 7.2.6, 7.4.0 - 7.4.1 and 6.4 all versions allows a remote and unauthenticated malicious user to perform a Man-in-the-Middle attack on the FortiLink communication channel between the Forti...
Fortinet Fortios 7.4.0
Fortinet Fortios 7.4.1
Fortinet Fortios
NA
CVE-2023-46714
A stack-based buffer overflow [CWE-121] vulnerability in Fortinet FortiOS version 7.2.1 up to and including 7.2.6 and version 7.4.0 up to and including 7.4.1 allows a privileged attacker over the administrative interface to execute arbitrary code or commands via crafted HTTP or H...
Fortinet Fortios 7.4.0
Fortinet Fortios 7.4.1
Fortinet Fortios
NA
CVE-2023-37935
A use of GET request method with sensitive query strings vulnerability in Fortinet FortiOS 7.0.0 - 7.0.12, 7.2.0 - 7.2.5 and 7.4.0 allows an malicious user to view plaintext passwords of remote services such as RDP or VNC, if the attacker is able to read the GET requests to those...
Fortinet Fortios
Fortinet Fortios 7.4.0
NA
CVE-2023-33301
An improper access control vulnerability in Fortinet FortiOS 7.2.0 - 7.2.4 and 7.4.0 allows an malicious user to access a restricted resource from a non trusted host.
Fortinet Fortios
Fortinet Fortios 7.4.0
NA
CVE-2023-36639
A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 up to and including 7.2.4, 7.0.0 up to and including 7.0.10, FortiOS versions 7.4.0, 7.2.0 up to and including 7.2.4, 7.0.0 up to and including 7.0.11, 6.4.0 up to and including 6.4.12, 6.2.0 up to...
Fortinet Fortios
Fortinet Fortiproxy
Fortinet Fortios 7.4.0
Fortinet Fortipam 1.1.0
Fortinet Fortipam
NA
CVE-2023-45583
A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 up to and including 7.2.5, 7.0.0 up to and including 7.0.11, 2.0.0 up to and including 2.0.13, 1.2.0 up to and including 1.2.13, 1.1.0 up to and including 1.1.6 FortiPAM versions 1.1.0, 1.0.0 up to...
Fortinet Fortiproxy
Fortinet Fortiswitchmanager
Fortinet Fortios
Fortinet Fortios 7.4.0
Fortinet Fortipam 1.1.0
Fortinet Fortipam
NA
CVE-2023-42790
A stack-based buffer overflow in Fortinet FortiOS 7.4.0 up to and including 7.4.1, 7.2.0 up to and including 7.2.5, 7.0.0 up to and including 7.0.12, 6.4.0 up to and including 6.4.14, 6.2.0 up to and including 6.2.15, FortiProxy 7.4.0, 7.2.0 up to and including 7.2.6, 7.0.0 up to...
Fortinet Fortios
Fortinet Fortiproxy
Fortinet Fortiproxy 7.4.0
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »