Brute-force Flaw in Fortinet FortiOS Allows Unauthorized Code Execution
Fortinet FortiOS versions 7.4.0 to 7.4.4, 7.2.0 to 7.2.8, 7.0.0 to 7.0.15, and 6.4.0 to 6.4.15 have a weak authentication issue. This also affects FortiProxy versions 7.4.0 to 7.4.4, 7.2.0 to 7.2.10, 7.0.0 to 7.0.17, and 2.0.0 to 2.0.14. FortiManager versions 7.6.0 to 7.6.1 and 7.4.1 to 7.4.3, as well as FortiManager Cloud and FortiAnalyzer Cloud versions 7.4.1 to 7.4.3, also have this problem. Attackers can use a brute-force attack to run code or commands without permission.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
fortinet fortios 7.4.4 |
||
fortinet fortios 7.4.3 |
||
fortinet fortios 7.4.2 |
||
fortinet fortios 7.4.1 |
||
fortinet fortios 7.4.0 |
||
fortinet fortios 7.2.8 |
||
fortinet fortios 7.2.7 |
||
fortinet fortios 7.2.6 |
||
fortinet fortios 7.2.5 |
||
fortinet fortios 7.2.4 |
||
fortinet fortios 7.2.3 |
||
fortinet fortios 7.2.2 |
||
fortinet fortios 7.2.1 |
||
fortinet fortios 7.2.0 |
||
fortinet fortios 7.0.15 |
||
fortinet fortios 7.0.14 |
||
fortinet fortios 7.0.13 |
||
fortinet fortios 7.0.12 |
||
fortinet fortios 7.0.11 |
||
fortinet fortios 7.0.10 |
||
fortinet fortios 7.0.9 |
||
fortinet fortios 7.0.8 |
||
fortinet fortios 7.0.7 |
||
fortinet fortios 7.0.6 |
||
fortinet fortios 7.0.5 |
||
fortinet fortios 7.0.4 |
||
fortinet fortios 7.0.3 |
||
fortinet fortios 7.0.2 |
||
fortinet fortios 7.0.1 |
||
fortinet fortios 7.0.0 |
||
fortinet fortios 6.4.15 |
||
fortinet fortios 6.4.14 |
||
fortinet fortios 6.4.13 |
||
fortinet fortios 6.4.12 |
||
fortinet fortios 6.4.11 |
||
fortinet fortios 6.4.10 |
||
fortinet fortios 6.4.9 |
||
fortinet fortios 6.4.8 |
||
fortinet fortios 6.4.7 |
||
fortinet fortios 6.4.6 |
||
fortinet fortios 6.4.5 |
||
fortinet fortios 6.4.4 |
||
fortinet fortios 6.4.3 |
||
fortinet fortios 6.4.2 |
||
fortinet fortios 6.4.1 |
||
fortinet fortios 6.4.0 |
||
fortinet fortios |
||
fortinet fortiproxy |
Vulmon