Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / fortinet

fortinet

1,122 tracked vulnerabilities.

CVE-2026-21741 LOW

FortiNAC-F 7.2.0-7.6.5 - Authenticated Open Redirect via Crafted CSV File

CVE-2026-35616 CRITICAL KEVNUCLEI

Fortinet FortiClientEMS 7.4.5-7.4.6 - Command Injection

CVE-2026-30897 MEDIUM

Fortinet FortiWeb - Buffer Overflow

CVE-2026-25972 MEDIUM

Fortinet FortiSIEM 7.4.0, 7.3.0-7.3.4 - XSS

CVE-2026-25836 HIGH

Fortinet FortiSandbox Cloud 5.0.4 - Command Injection

CVE-2026-25689 MEDIUM

Fortinet FortiDeceptor - Command Injection

CVE-2026-24641 LOW

FortiWeb 7.0.0-7.6.6, 8.0.0-8.0.2 - Authenticated Denial of Service via HTTP Request

CVE-2026-24640 MEDIUM

FortiWeb 7.0.2-8.0.2 - Buffer Overflow

CVE-2026-24018 HIGH

FortiClientLinux 7.2.2-7.4.4 - Privilege Escalation

CVE-2026-24017 HIGH

FortiWeb 7.0.0-7.0.11, 7.2.0-7.2.11, 7.4.0-7.4.10, 7.6.0-7.6.5, 8.0.0-8.0.2 - Authentication Rate-Limit Bypass

CVE-2026-22629 LOW

Fortinet FortiAnalyzer/FortiManager - Auth Bypass

CVE-2026-22628 MEDIUM

Fortinet FortiSwitchAXFixed 1.0.0-1.0.1 - Command Injection

CVE-2026-22627 HIGH

Fortinet FortiSwitchAXFixed 1.0.0-1.0.1 - Buffer Overflow

CVE-2026-22572 HIGH

Fortinet FortiAnalyzer 7.6.0-7.6.3 - Auth Bypass

CVE-2026-22153 HIGH

FortiOS 7.6.0-7.6.4 - Unauthenticated Authentication Bypass via LDAP Configuration

CVE-2026-21743 HIGH

Fortinet FortiAuthenticator 6.3.0-6.6.6 - Missing Authorization for Local User Modification via File Upload

CVE-2026-21643 CRITICAL KEVNUCLEI

Fortinet FortiClientEMS <7.4.4 - SQL Injection

CVE-2026-25815 LOW

Fortinet FortiOS <7.6.6 - Info Disclosure

CVE-2026-24858 CRITICAL KEV

Fortinet FortiAnalyzer 7.0.0-7.0.15, 7.2.0-7.2.11, 7.4.0-7.4.9, 7.6.0-7.6.5 - Authentication Bypass via FortiCloud SSO

CVE-2025-67604 MEDIUM

FortiAnalyzer and FortiManager - Authenticated Denial of Service via Multiple Crafted HTTP Requests

CVE-2025-53870 MEDIUM

Fortinet FortiAP - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

CVE-2025-53844 HIGH

FortiOS 7.6.0-7.6.3, 7.4.0-7.4.8, 7.2.0-7.2.11 - Out-of-bounds Write via Specially Crafted Packets

CVE-2025-53681 HIGH

Fortinet FortiMail - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

CVE-2025-53680 MEDIUM

Fortinet FortiAP - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

CVE-2025-68649 MEDIUM

Fortinet FortiManager and FortiAnalyzer <= 7.6.4, <= 7.4.7, 7.2 all, 7.0 all - Path Traversal via CLI Requests

Previous Page 2 of 45 Next

Products

fortios 267 fortiweb 124 fortiproxy 117 fortimanager 112 fortianalyzer 92 forticlient 85 fortisandbox 58 fortimail 46 fortiportal 44 fortiadc 43 fortisoar 31 fortinac 30 fortisiem 29 fortimanager_cloud 27 fortipam 25 fortivoice 24 fortiauthenticator 23 fortiwlm 23 fortiswitchmanager 19 fortinet_antivirus 18 fortianalyzer_cloud 17 fortitester 16 fortiwan 16 fortimanager_firmware 15 fortiswitch 14 fortiwlc 14 FortiOS 13 fortianalyzer_big_data 13 forticlientems 13 fortianalyzer_firmware 12

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy