chessredoffsec

7 exploits Active since Sep 2021
CVE-2021-24019 NOMISEC HIGH SCANNER
Fortinet Forticlient Endpoint Managem... - Insufficient Session Expiration
An insufficient session expiration vulnerability [CWE- 613] in FortiClientEMS versions 6.4.2 and below, 6.2.8 and below may allow an attacker to reuse the unexpired admin user session IDs to gain admin privileges, should the attacker be able to obtain that session ID (via other, hypothetical attacks)
2 stars
CVSS 8.1
CVE-2021-24006 NOMISEC MEDIUM WORKING POC
FortiManager <6.4.3 - Privilege Escalation
An improper access control vulnerability in FortiManager versions 6.4.0 to 6.4.3 may allow an authenticated attacker with a restricted user profile to access the SD-WAN Orchestrator panel via directly visiting its URL.
2 stars
CVSS 6.3
CVE-2024-44313 NOMISEC HIGH WORKING POC
Tastyigniter < 4.0.0 - Improper Access Control
TastyIgniter 3.7.6 contains an Incorrect Access Control vulnerability in the invoice() function within Orders.php which allows unauthorized users to access and generate invoices due to missing permission checks.
1 stars
CVSS 8.1
CVE-2023-26208 NOMISEC LOW WORKING POC
Fortinet FortiAuthenticator <6.4 - DoS
A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet FortiAuthenticator 6.4.x and before allows a remote unauthenticated attacker to partially exhaust CPU and memory via sending numerous HTTP requests to the login form.
1 stars
CVSS 3.7
CVE-2022-29056 NOMISEC LOW WORKING POC
Fortinet FortiMail <6.4.0, 6.2.0-6.2.4 - DoS
A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet FortiMail version 6.4.0, version 6.2.0 through 6.2.4 and before 6.0.9 allows a remote unauthenticated attacker to partially exhaust CPU and memory via sending numerous HTTP requests to the login form.
1 stars
CVSS 3.7
CVE-2021-24006 NOMISEC MEDIUM WORKING POC
FortiManager <6.4.3 - Privilege Escalation
An improper access control vulnerability in FortiManager versions 6.4.0 to 6.4.3 may allow an authenticated attacker with a restricted user profile to access the SD-WAN Orchestrator panel via directly visiting its URL.
1 stars
CVSS 6.3
CVE-2023-26209 NOMISEC LOW WORKING POC
Fortinet FortiDeceptor <3.1.x - DoS
A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet FortiDeceptor 3.1.x and before allows a remote unauthenticated attacker to partially exhaust CPU and memory via sending numerous HTTP requests to the login form.
CVSS 3.7