fortinet

1,136 tracked vulnerabilities.

CVE-2022-41331 CRITICAL
FortiPresence <1.2.1 - Info Disclosure
Apr 11, 2023
CVSS 9.8
EPSS 0.01
CVE-2022-41330 HIGH
Fortinet FortiOS <7.2.4, FortiProxy <7.0.8 - XSS
Apr 11, 2023
CVSS 8.8
EPSS 0.01
CVE-2022-40682 HIGH
FortiClient 6.0.0-6.0.10, 6.2.0-6.2.9, 6.4.0-6.4.9, 7.0.0-7.0.7 - RCE via Named Pipe
Apr 11, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-40679 HIGH
FortiADC 5.x-7.1.0, FortiDDoS 4.x-5.6.x, FortiDDoS-F 6.1.0-6.4.0 - OS Command Injection
Apr 11, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-35850 MEDIUM
FortiAuthenticator 6.1.0-6.3.3 - Unauthenticated Reflected Cross-Site Scripting via Reset-Password Page
Apr 11, 2023
CVSS 4.3
EPSS 0.00
CVE-2022-27487 HIGH
FortiSandbox 2.5.0-4.2.2 and FortiDeceptor 1.0-4.1.0 - Authenticated Unauthorized API Access via Crafted HTTP Requests
Apr 11, 2023
CVSS 8.8
EPSS 0.01
CVE-2022-27485 MEDIUM
FortiSandbox 3.0.x-3.2.3, 4.0.0-4.0.2, 4.2.0 - Authenticated SQL Injection
Apr 11, 2023
CVSS 6.5
EPSS 0.01
CVE-2022-29056 LOW
Fortinet FortiMail <6.4.0, 6.2.0-6.2.4 - DoS
Mar 09, 2023
CVSS 3.7
EPSS 0.02
CVE-2022-45861 MEDIUM
Fortinet FortiOS <6.4.11 - Use After Free
Mar 07, 2023
CVSS 6.5
EPSS 0.01
CVE-2022-42476 HIGH
FortiProxy 1.1.0-1.1.5 - Privilege Escalation via CLI Request Path Traversal
Mar 07, 2023
CVSS 8.2
EPSS 0.00
CVE-2022-41333 HIGH
FortiRecorder < 6.0.11 - Unauthenticated Denial of Service via Crafted GET Requests
Mar 07, 2023
CVSS 7.5
EPSS 0.07
CVE-2022-41329 MEDIUM
Fortinet FortiProxy <7.2.1, FortiOS <7.2.3 - Info Disclosure
Mar 07, 2023
CVSS 5.3
EPSS 0.01
CVE-2022-41328 MEDIUM KEV
Fortinet FortiOS <7.2.3-6.4.11 - Path Traversal
Mar 07, 2023
CVSS 6.7
EPSS 0.12
CVE-2022-40676 HIGH
FortiNAC 8.5.0-8.5.4, 8.6.0-8.6.5, 8.7.0-8.7.6, 8.8.0-8.8.11, 9.1.0-9.1.8, 9.2.0-9.2.5, 9.4.0 - Cross-Site Scripting
Mar 07, 2023
CVSS 7.5
EPSS 0.01
CVE-2022-39953 HIGH
Fortinet FortiNAC Privilege Escalation via Crafted Commands
Mar 07, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-39951 HIGH
FortiWeb 6.3.6-6.3.20 and 7.0.0-7.0.2 - OS Command Injection via Crafted HTTP Requests
Mar 07, 2023
CVSS 7.2
EPSS 0.02
CVE-2022-27490 MEDIUM
Fortinet Fortianalyzer < 5.6.11 - Information Disclosure
Mar 07, 2023
CVSS 5.4
EPSS 0.00
CVE-2022-22297 MEDIUM
FortiWeb/FortiRecorder <6.4.1/<6.3.17 - Info Disclosure
Mar 07, 2023
CVSS 5.5
EPSS 0.00
CVE-2022-43954 MEDIUM
FortiPortal <7.0.2 - Info Disclosure
Feb 16, 2023
CVSS 4.3
EPSS 0.01
CVE-2022-42472 MEDIUM
FortiOS/FortiProxy HTTP Request Splitting (Auth Required)
Feb 16, 2023
CVSS 4.2
EPSS 0.00
CVE-2022-41335 HIGH
Fortinet FortiOS <7.2.2 - Path Traversal
Feb 16, 2023
CVSS 8.8
EPSS 0.01
CVE-2022-41334 HIGH
FortiOS 7.0.0-7.0.7 - Unauthenticated Cross-Site Scripting via Redir Parameter
Feb 16, 2023
CVSS 8.8
EPSS 0.01
CVE-2022-40683 HIGH
Fortinet FortiWeb 7.0.0-7.0.3 - Double Free via Crafted Commands
Feb 16, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-40678 HIGH
FortiNAC 8.5.0-9.4.0 - Insufficiently Protected Credentials
Feb 16, 2023
CVSS 7.4
EPSS 0.00
CVE-2022-40677 HIGH
Fortinet FortiNAC <9.4.0 - Command Injection
Feb 16, 2023
CVSS 7.2
EPSS 0.01