fortinet
1,122 tracked vulnerabilities.
CVE-2023-33302
MEDIUM
Fortinet FortiMail <6.4.4 - Buffer Overflow
Mar 31, 2025
CVSS 4.7
EPSS 0.00
CVE-2023-25610
CRITICAL
Fortinet FortiOS <=6.2.12, 6.4.0-6.4.11, 7.0.0-7.0.6, 7.2.0-7.2.3 - Remote Code Execution via Buffer Underflow
Mar 24, 2025
CVSS 9.8
EPSS 0.17
CVE-2023-47539
CRITICAL
FortiMail 7.4.0 - Unauthenticated Admin Login Bypass via Crafted HTTP Request
Mar 18, 2025
CVSS 9.8
EPSS 0.00
CVE-2023-48785
MEDIUM
FortiNAC-F < 7.2.5 - Unauthenticated Man-in-the-Middle via Improper Certificate Validation
Mar 14, 2025
CVSS 4.8
EPSS 0.00
CVE-2023-45588
HIGH
FortiClientMac <7.2.3 - Path Traversal
Mar 14, 2025
CVSS 8.2
EPSS 0.00
CVE-2023-33300
MEDIUM
Fortinet FortiNAC <7.2.1 & <9.4.3 - Command Injection
Mar 14, 2025
CVSS 5.3
EPSS 0.04
CVE-2023-48790
HIGH
Fortinet FortiNDR <7.4.0, 7.2.1-7.1.1 - CSRF
Mar 11, 2025
CVSS 7.5
EPSS 0.00
CVE-2023-42784
MEDIUM
Fortinet FortiWeb <7.4.6, <7.2.10, <7.0.10 - RCE
Mar 11, 2025
CVSS 5.6
EPSS 0.00
CVE-2023-40723
HIGH
FortiSIEM 5.1.0-6.4.2 - Exposure of Sensitive Information via API Request
Mar 11, 2025
CVSS 8.1
EPSS 0.00
CVE-2023-37933
HIGH
FortiADC 7.4.0, 7.2.0-7.2.1, < 7.1.3 - Authenticated Cross-Site Scripting via HTTP Requests
Mar 11, 2025
CVSS 8.8
EPSS 0.01
CVE-2023-40721
MEDIUM
FortiOS 6.2.0-7.0.13 - Authenticated Remote Code Execution via Format String Vulnerability
Feb 11, 2025
CVSS 6.7
EPSS 0.00
CVE-2023-46715
MEDIUM
Fortinet FortiOS <7.4.1, <7.2.6 - Auth Bypass
Jan 14, 2025
CVSS 5.0
EPSS 0.00
CVE-2023-42786
MEDIUM
FortiOS 6.0-7.2.5, 7.4.0-7.4.1 - Denial of Service via Crafted HTTP Request
Jan 14, 2025
CVSS 6.5
EPSS 0.01
CVE-2023-42785
MEDIUM
FortiOS 6.0-6.4, 7.0, 7.2.0-7.2.5, 7.4.0-7.4.1 - Denial of Service via Crafted HTTP Request
Jan 14, 2025
CVSS 6.5
EPSS 0.01
CVE-2023-37937
HIGH
FortiSwitch 6.0.0-6.2.7, 6.4.0-6.4.13, 7.0.0-7.0.7, 7.2.0-7.2.5, 7.4.0 - OS Command Injection via CLI
Jan 14, 2025
CVSS 7.8
EPSS 0.00
CVE-2023-37936
CRITICAL
Fortinet FortiSwitch <7.4.0 - Code Injection
Jan 14, 2025
CVSS 9.8
EPSS 0.01
CVE-2023-37931
HIGH
FortiVoice 6.0.0-6.4.7 and 7.0.0-7.0.1 - Authenticated Blind SQL Injection via HTTP/HTTPS Requests
Jan 14, 2025
CVSS 8.8
EPSS 0.00
CVE-2023-34990
CRITICAL
NUCLEI
Fortinet FortiWLM 8.5.0-8.5.4 and 8.6.0-8.6.5 - Relative Path Traversal and Code Execution via Web Requests
Dec 18, 2024
CVSS 9.8
EPSS 0.73
CVE-2023-50176
HIGH
Fortinet FortiOS <7.4.3, <7.2.7, <7.0.13 - RCE
Nov 12, 2024
CVSS 7.5
EPSS 0.00
CVE-2023-47543
MEDIUM
FortiPortal 7.0.0-7.0.3 - Authenticated Authorization Bypass via HTTP/HTTPS Requests
Nov 12, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-44255
MEDIUM
Fortinet FortiManager <7.4.2, FortiAnalyzer <7.4.2, FortiAnalyzer-B...
Nov 12, 2024
CVSS 4.1
EPSS 0.00
CVE-2023-44254
MEDIUM
FortiAnalyzer and FortiManager < 7.2.5 - Authorization Bypass via Crafted HTTP Request
Sep 10, 2024
CVSS 5.0
EPSS 0.00
CVE-2023-26211
MEDIUM
FortiSOAR 7.3.0-7.3.2 - Authenticated Stored Cross-Site Scripting in Communications Module
Aug 13, 2024
CVSS 6.8
EPSS 0.02
CVE-2023-50181
MEDIUM
FortiADC 7.4.0-7.4.1 and < 7.2.4 - Authenticated Improper Access Control via HTTP/HTTPS Requests
Jul 09, 2024
CVSS 4.9
EPSS 0.00
CVE-2023-50179
MEDIUM
FortiADC 7.0.0-7.4.0 - Unauthenticated Man-in-the-Middle via Improper Certificate Validation
Jul 09, 2024
CVSS 4.8
EPSS 0.00
Products
fortios 267
fortiweb 124
fortiproxy 117
fortimanager 112
fortianalyzer 92
forticlient 85
fortisandbox 58
fortimail 46
fortiportal 44
fortiadc 43
fortisoar 31
fortinac 30
fortisiem 29
fortimanager_cloud 27
fortipam 25
fortivoice 24
fortiauthenticator 23
fortiwlm 23
fortiswitchmanager 19
fortinet_antivirus 18
fortianalyzer_cloud 17
fortitester 16
fortiwan 16
fortimanager_firmware 15
fortiswitch 14
fortiwlc 14
FortiOS 13
fortianalyzer_big_data 13
forticlientems 13
fortianalyzer_firmware 12
Quick Filters