fortinet
1,136 tracked vulnerabilities.
CVE-2023-36550
CRITICAL
Fortinet FortiWLM <8.6.5, <8.5.4 - Command Injection
Oct 10, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-36549
HIGH
Fortinet FortiWLM <8.6.5, <8.5.4 - Command Injection
Oct 10, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-36548
CRITICAL
Fortinet FortiWLM <8.6.5, <8.5.4 - Code Injection
Oct 10, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-36547
CRITICAL
Fortinet FortiWLM <8.6.5, <8.5.4 - Command Injection
Oct 10, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-34993
CRITICAL
NUCLEI
FortiWLM 8.5.0-8.5.4 and 8.6.0-8.6.5 - OS Command Injection via HTTP GET Request Parameters
Oct 10, 2023
CVSS 9.8
EPSS 0.18
CVE-2023-34992
CRITICAL
FortiSIEM 6.6.0-6.6.2 - OS Command Injection via Crafted API Requests
Oct 10, 2023
CVSS 10.0
EPSS 0.66
CVE-2023-34989
HIGH
FortiWLM 8.5.0-8.5.4 and 8.6.0-8.6.5 - OS Command Injection via HTTP GET Request Parameters
Oct 10, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-34988
HIGH
Fortinet FortiWLM 8.5.0-8.5.4 and 8.6.0-8.6.5 - OS Command Injection via HTTP GET Request Parameters
Oct 10, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-34987
HIGH
Fortinet FortiWLM 8.5.0-8.5.4 and 8.6.0-8.6.5 - OS Command Injection via HTTP GET Request Parameters
Oct 10, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-34986
HIGH
FortiWLM 8.5.0-8.5.4 and 8.6.0-8.6.5 - OS Command Injection via HTTP GET Request Parameters
Oct 10, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-34985
HIGH
FortiWLM 8.5.0-8.5.4 and 8.6.0-8.6.5 - OS Command Injection via HTTP GET Request Parameters
Oct 10, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-33301
MEDIUM
Fortinet FortiOS <7.2.5-7.4.0 - Info Disclosure
Oct 10, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-25607
HIGH
FortiManager 6.0-7.2.2, FortiAnalyzer 6.0-7.2.2, FortiADC 6.0-7.1.0 - OS Command Injection
Oct 10, 2023
CVSS 7.8
EPSS 0.01
CVE-2023-25604
MEDIUM
Fortinet FortiGuest 1.0.0 - Sensitive Information Exposure in RADIUS Logs
Oct 10, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-40717
MEDIUM
FortiTester <7.2.3 - Info Disclosure
Sep 13, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-40715
MEDIUM
FortiTester <7.2.3 - Info Disclosure
Sep 13, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-36642
MEDIUM
FortiTester <7.2.3 - Command Injection
Sep 13, 2023
CVSS 6.7
EPSS 0.00
CVE-2023-36638
MEDIUM
FortiAnalyzer 6.0.0-6.4.11 & FortiManager 6.4.0-6.4.11 - Privilege Escalation via Stolen GUI Session ID
Sep 13, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-36634
HIGH
FortiAP-U <7.0.0, <6.2.5, <=6.0, <=5.4 - Command Injection
Sep 13, 2023
CVSS 7.1
EPSS 0.01
CVE-2023-36551
MEDIUM
Fortinet FortiSIEM <6.7.5 - Info Disclosure
Sep 13, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-34984
HIGH
FortiWeb 6.3.6-6.3.23, 6.4.0-6.4.3, 7.0.0-7.0.6, 7.2.0-7.2.1 - Remote Code Execution via Crafted HTTP Requests
Sep 13, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-29183
HIGH
FortiProxy/FortiOS <7.2.4/<7.0.11/<6.4.12/<6.2.14 - XSS
Sep 13, 2023
CVSS 8.0
EPSS 0.01
CVE-2023-27998
MEDIUM
FortiPresence 1.0-1.2.1 - Unauthenticated Sensitive Information Exposure via Missing Custom Error Page
Sep 13, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-25608
MEDIUM
FortiAP - Unfiltered Special Elements
Sep 13, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-36635
HIGH
Fortinet FortiSwitchManager <7.2.2, <7.0.1 - Privilege Escalation
Sep 07, 2023
CVSS 7.1
EPSS 0.00
Products
fortios 268
fortiweb 124
fortiproxy 118
fortimanager 112
fortianalyzer 92
forticlient 85
fortisandbox 59
FortiOS 47
fortimail 46
fortiportal 45
fortiadc 43
fortisoar 31
fortinac 30
FortiProxy 29
fortisiem 29
fortimanager_cloud 27
fortipam 25
fortivoice 24
fortiauthenticator 23
fortiwlm 23
fortiswitchmanager 19
fortinet_antivirus 18
fortianalyzer_cloud 17
FortiPAM 16
fortitester 16
fortiwan 16
fortimanager_firmware 15
fortiswitch 14
fortiwlc 14
fortianalyzer_big_data 13
Quick Filters