fortinet

1,136 tracked vulnerabilities.

CVE-2023-36550 CRITICAL
Fortinet FortiWLM <8.6.5, <8.5.4 - Command Injection
Oct 10, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-36549 HIGH
Fortinet FortiWLM <8.6.5, <8.5.4 - Command Injection
Oct 10, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-36548 CRITICAL
Fortinet FortiWLM <8.6.5, <8.5.4 - Code Injection
Oct 10, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-36547 CRITICAL
Fortinet FortiWLM <8.6.5, <8.5.4 - Command Injection
Oct 10, 2023
CVSS 9.8
EPSS 0.02
CVE-2023-34993 CRITICAL NUCLEI
FortiWLM 8.5.0-8.5.4 and 8.6.0-8.6.5 - OS Command Injection via HTTP GET Request Parameters
Oct 10, 2023
CVSS 9.8
EPSS 0.18
CVE-2023-34992 CRITICAL
FortiSIEM 6.6.0-6.6.2 - OS Command Injection via Crafted API Requests
Oct 10, 2023
CVSS 10.0
EPSS 0.66
CVE-2023-34989 HIGH
FortiWLM 8.5.0-8.5.4 and 8.6.0-8.6.5 - OS Command Injection via HTTP GET Request Parameters
Oct 10, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-34988 HIGH
Fortinet FortiWLM 8.5.0-8.5.4 and 8.6.0-8.6.5 - OS Command Injection via HTTP GET Request Parameters
Oct 10, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-34987 HIGH
Fortinet FortiWLM 8.5.0-8.5.4 and 8.6.0-8.6.5 - OS Command Injection via HTTP GET Request Parameters
Oct 10, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-34986 HIGH
FortiWLM 8.5.0-8.5.4 and 8.6.0-8.6.5 - OS Command Injection via HTTP GET Request Parameters
Oct 10, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-34985 HIGH
FortiWLM 8.5.0-8.5.4 and 8.6.0-8.6.5 - OS Command Injection via HTTP GET Request Parameters
Oct 10, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-33301 MEDIUM
Fortinet FortiOS <7.2.5-7.4.0 - Info Disclosure
Oct 10, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-25607 HIGH
FortiManager 6.0-7.2.2, FortiAnalyzer 6.0-7.2.2, FortiADC 6.0-7.1.0 - OS Command Injection
Oct 10, 2023
CVSS 7.8
EPSS 0.01
CVE-2023-25604 MEDIUM
Fortinet FortiGuest 1.0.0 - Sensitive Information Exposure in RADIUS Logs
Oct 10, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-40717 MEDIUM
FortiTester <7.2.3 - Info Disclosure
Sep 13, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-40715 MEDIUM
FortiTester <7.2.3 - Info Disclosure
Sep 13, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-36642 MEDIUM
FortiTester <7.2.3 - Command Injection
Sep 13, 2023
CVSS 6.7
EPSS 0.00
CVE-2023-36638 MEDIUM
FortiAnalyzer 6.0.0-6.4.11 & FortiManager 6.4.0-6.4.11 - Privilege Escalation via Stolen GUI Session ID
Sep 13, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-36634 HIGH
FortiAP-U <7.0.0, <6.2.5, <=6.0, <=5.4 - Command Injection
Sep 13, 2023
CVSS 7.1
EPSS 0.01
CVE-2023-36551 MEDIUM
Fortinet FortiSIEM <6.7.5 - Info Disclosure
Sep 13, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-34984 HIGH
FortiWeb 6.3.6-6.3.23, 6.4.0-6.4.3, 7.0.0-7.0.6, 7.2.0-7.2.1 - Remote Code Execution via Crafted HTTP Requests
Sep 13, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-29183 HIGH
FortiProxy/FortiOS <7.2.4/<7.0.11/<6.4.12/<6.2.14 - XSS
Sep 13, 2023
CVSS 8.0
EPSS 0.01
CVE-2023-27998 MEDIUM
FortiPresence 1.0-1.2.1 - Unauthenticated Sensitive Information Exposure via Missing Custom Error Page
Sep 13, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-25608 MEDIUM
FortiAP - Unfiltered Special Elements
Sep 13, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-36635 HIGH
Fortinet FortiSwitchManager <7.2.2, <7.0.1 - Privilege Escalation
Sep 07, 2023
CVSS 7.1
EPSS 0.00