fortinet

1,136 tracked vulnerabilities.

CVE-2022-22298 MEDIUM
Fortinet FortiIsolator <2.3.5 - Command Injection
Oct 10, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-35849 HIGH
FortiADC <7.1.1 - Command Injection
Sep 13, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-22305 MEDIUM
FortiManager <7.0.1, FortiAnalyzer <7.0.2, FortiOS <6.4, FortiSandb...
Sep 01, 2023
CVSS 5.4
EPSS 0.00
CVE-2022-23447 HIGH
Fortinet Fortiextender Firmware < 3.2.4 - Path Traversal
Jul 11, 2023
CVSS 7.5
EPSS 0.01
CVE-2022-22302 MEDIUM
FortiGate/FortiAuthenticator <6.4.1/6.2.9/<6.0.13 - Info Disclosure
Jul 11, 2023
CVSS 5.3
EPSS 0.00
CVE-2022-43953 MEDIUM
Fortinet FortiOS <7.2.4 - Code Injection
Jun 13, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-43949 MEDIUM
Fortinet FortiSIEM <6.7.1 - Code Injection
Jun 13, 2023
CVSS 6.2
EPSS 0.00
CVE-2022-42478 HIGH
FortiSIEM < 7.0.0 - Excessive Authentication Attempts via Brute Force
Jun 13, 2023
CVSS 8.1
EPSS 0.01
CVE-2022-42474 MEDIUM
Fortinet Fortiproxy < 1.0.7 - Path Traversal
Jun 13, 2023
CVSS 6.5
EPSS 0.01
CVE-2022-41327 HIGH
Fortinet FortiOS <7.2.4, FortiProxy <7.2.1 - Info Disclosure
Jun 13, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-39946 HIGH
FortiNAC <= 9.4.2, <= 9.2.7, 9.1, 8.8, 8.7, 8.6, 8.5 - Authenticated Unauthorized JSP Calls via Crafted HTTP Requests
Jun 13, 2023
CVSS 7.6
EPSS 0.01
CVE-2022-33877 HIGH
FortiClient/FortiConverter <7.0.6/6.4.8 - Local Privilege Escalation
Jun 13, 2023
CVSS 7.0
EPSS 0.00
CVE-2022-45860 MEDIUM
FortiNAC 7.2.0, 8.7-9.4.2 and FortiNAC-F 7.2.0 - Unauthenticated Weak Authentication in Device Registration
May 03, 2023
CVSS 5.3
EPSS 0.00
CVE-2022-45859 MEDIUM
FortiNAC <=9.4.1, <=9.2.6, <=9.1.8, 8.8.0, 8.7.0; FortiNAC-F 7.2.0 - Insufficiently Protected Credentials
May 03, 2023
CVSS 4.1
EPSS 0.00
CVE-2022-45858 MEDIUM
FortiNAC 8.7.0-9.4.1 - Use of a Weak Cryptographic Algorithm
May 03, 2023
CVSS 4.2
EPSS 0.00
CVE-2022-43950 MEDIUM
FortiNAC-F <7.2.0, FortiNAC <9.4.1, 9.2 all, 9.1 all, 8.8 all, 8.7 ...
May 03, 2023
CVSS 4.3
EPSS 0.00
CVE-2022-43955 HIGH
FortiWeb 6.0.0-6.2.6, 6.3.0-6.3.21, 6.4, 7.0.0-7.0.3 - Reflected XSS via Log Entry Injection
Apr 11, 2023
CVSS 8.8
EPSS 0.01
CVE-2022-43952 LOW
FortiADC <7.1.1, <7.0.3, <6.2.5 - XSS
Apr 11, 2023
CVSS 3.5
EPSS 0.00
CVE-2022-43951 MEDIUM
FortiNAC <9.4.1-8.7.6 - Info Disclosure
Apr 11, 2023
CVSS 5.3
EPSS 0.01
CVE-2022-43948 MEDIUM
Fortinet FortiWeb <7.0.4 - Command Injection
Apr 11, 2023
CVSS 6.7
EPSS 0.01
CVE-2022-43947 MEDIUM
Fortinet FortiOS <7.2.3 - Privilege Escalation
Apr 11, 2023
CVSS 5.0
EPSS 0.00
CVE-2022-43946 HIGH
Fortinet FortiClientWindows <7.0.7 - RCE
Apr 11, 2023
CVSS 7.5
EPSS 0.01
CVE-2022-42477 HIGH
FortiAnalyzer 6.4.0-7.0.6 and 7.2.1 - Authenticated File System Information Disclosure via Custom Dataset SQL Queries
Apr 11, 2023
CVSS 7.1
EPSS 0.00
CVE-2022-42470 HIGH
FortiClient 6.0.0-6.0.10 - Unauthenticated Path Traversal via Named Pipe
Apr 11, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-42469 MEDIUM
FortiOS 7.0.0-7.0.9 - Authenticated Policy Bypass via SSL-VPN Bookmarks
Apr 11, 2023
CVSS 4.3
EPSS 0.00