fortinet
1,122 tracked vulnerabilities.
CVE-2022-45858
MEDIUM
FortiNAC 8.7.0-9.4.1 - Use of a Weak Cryptographic Algorithm
May 03, 2023
CVSS 4.2
EPSS 0.00
CVE-2022-43950
MEDIUM
FortiNAC-F <7.2.0, FortiNAC <9.4.1, 9.2 all, 9.1 all, 8.8 all, 8.7 ...
May 03, 2023
CVSS 4.3
EPSS 0.00
CVE-2022-43955
HIGH
FortiWeb 6.0.0-6.2.6, 6.3.0-6.3.21, 6.4, 7.0.0-7.0.3 - Reflected XSS via Log Entry Injection
Apr 11, 2023
CVSS 8.8
EPSS 0.00
CVE-2022-43952
LOW
FortiADC <7.1.1, <7.0.3, <6.2.5 - XSS
Apr 11, 2023
CVSS 3.5
EPSS 0.00
CVE-2022-43951
MEDIUM
FortiNAC <9.4.1-8.7.6 - Info Disclosure
Apr 11, 2023
CVSS 5.3
EPSS 0.00
CVE-2022-43948
MEDIUM
Fortinet FortiWeb <7.0.4 - Command Injection
Apr 11, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-43947
MEDIUM
Fortinet FortiOS <7.2.3 - Privilege Escalation
Apr 11, 2023
CVSS 5.0
EPSS 0.00
CVE-2022-43946
HIGH
Fortinet FortiClientWindows <7.0.7 - RCE
Apr 11, 2023
CVSS 7.5
EPSS 0.00
CVE-2022-42477
HIGH
FortiAnalyzer 6.4.0-7.0.6 and 7.2.1 - Authenticated File System Information Disclosure via Custom Dataset SQL Queries
Apr 11, 2023
CVSS 7.1
EPSS 0.00
CVE-2022-42470
HIGH
FortiClient 6.0.0-6.0.10 - Unauthenticated Path Traversal via Named Pipe
Apr 11, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-42469
MEDIUM
FortiOS 7.0.0-7.0.9 - Authenticated Policy Bypass via SSL-VPN Bookmarks
Apr 11, 2023
CVSS 4.3
EPSS 0.00
CVE-2022-41331
CRITICAL
FortiPresence <1.2.1 - Info Disclosure
Apr 11, 2023
CVSS 9.8
EPSS 0.01
CVE-2022-41330
HIGH
Fortinet FortiOS <7.2.4, FortiProxy <7.0.8 - XSS
Apr 11, 2023
CVSS 8.8
EPSS 0.02
CVE-2022-40682
HIGH
FortiClient 6.0.0-6.0.10, 6.2.0-6.2.9, 6.4.0-6.4.9, 7.0.0-7.0.7 - RCE via Named Pipe
Apr 11, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-40679
HIGH
FortiADC 5.x-7.1.0, FortiDDoS 4.x-5.6.x, FortiDDoS-F 6.1.0-6.4.0 - OS Command Injection
Apr 11, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-35850
MEDIUM
FortiAuthenticator 6.1.0-6.3.3 - Unauthenticated Reflected Cross-Site Scripting via Reset-Password Page
Apr 11, 2023
CVSS 4.3
EPSS 0.01
CVE-2022-27487
HIGH
FortiSandbox 2.5.0-4.2.2 and FortiDeceptor 1.0-4.1.0 - Authenticated Unauthorized API Access via Crafted HTTP Requests
Apr 11, 2023
CVSS 8.8
EPSS 0.01
CVE-2022-27485
MEDIUM
FortiSandbox 3.0.x-3.2.3, 4.0.0-4.0.2, 4.2.0 - Authenticated SQL Injection
Apr 11, 2023
CVSS 6.5
EPSS 0.01
CVE-2022-29056
LOW
Fortinet FortiMail <6.4.0, 6.2.0-6.2.4 - DoS
Mar 09, 2023
CVSS 3.7
EPSS 0.24
CVE-2022-45861
MEDIUM
Fortinet FortiOS <6.4.11 - Use After Free
Mar 07, 2023
CVSS 6.5
EPSS 0.01
CVE-2022-42476
HIGH
FortiProxy 1.1.0-1.1.5 - Privilege Escalation via CLI Request Path Traversal
Mar 07, 2023
CVSS 8.2
EPSS 0.00
CVE-2022-41333
HIGH
FortiRecorder < 6.0.11 - Unauthenticated Denial of Service via Crafted GET Requests
Mar 07, 2023
CVSS 7.5
EPSS 0.19
CVE-2022-41329
MEDIUM
Fortinet FortiProxy <7.2.1, FortiOS <7.2.3 - Info Disclosure
Mar 07, 2023
CVSS 5.3
EPSS 0.01
CVE-2022-41328
MEDIUM
KEV
Fortinet FortiOS <7.2.3-6.4.11 - Path Traversal
Mar 07, 2023
CVSS 6.7
EPSS 0.00
CVE-2022-40676
HIGH
FortiNAC 8.5.0-8.5.4, 8.6.0-8.6.5, 8.7.0-8.7.6, 8.8.0-8.8.11, 9.1.0-9.1.8, 9.2.0-9.2.5, 9.4.0 - Cross-Site Scripting
Mar 07, 2023
CVSS 7.5
EPSS 0.01
Products
fortios 267
fortiweb 124
fortiproxy 117
fortimanager 112
fortianalyzer 92
forticlient 85
fortisandbox 58
fortimail 46
fortiportal 44
fortiadc 43
fortisoar 31
fortinac 30
fortisiem 29
fortimanager_cloud 27
fortipam 25
fortivoice 24
fortiauthenticator 23
fortiwlm 23
fortiswitchmanager 19
fortinet_antivirus 18
fortianalyzer_cloud 17
fortitester 16
fortiwan 16
fortimanager_firmware 15
fortiswitch 14
fortiwlc 14
FortiOS 13
fortianalyzer_big_data 13
forticlientems 13
fortianalyzer_firmware 12
Quick Filters