fortinet

1,122 tracked vulnerabilities.

CVE-2022-39953 HIGH
Fortinet FortiNAC Privilege Escalation via Crafted Commands
Mar 07, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-39951 HIGH
FortiWeb 6.3.6-6.3.20 and 7.0.0-7.0.2 - OS Command Injection via Crafted HTTP Requests
Mar 07, 2023
CVSS 7.2
EPSS 0.01
CVE-2022-27490 MEDIUM
Fortinet Fortianalyzer < 5.6.11 - Information Disclosure
Mar 07, 2023
CVSS 5.4
EPSS 0.00
CVE-2022-22297 MEDIUM
FortiWeb/FortiRecorder <6.4.1/<6.3.17 - Info Disclosure
Mar 07, 2023
CVSS 5.5
EPSS 0.00
CVE-2022-43954 MEDIUM
FortiPortal <7.0.2 - Info Disclosure
Feb 16, 2023
CVSS 4.3
EPSS 0.00
CVE-2022-42472 MEDIUM
FortiOS/FortiProxy HTTP Request Splitting (Auth Required)
Feb 16, 2023
CVSS 4.2
EPSS 0.00
CVE-2022-41335 HIGH
Fortinet FortiOS <7.2.2 - Path Traversal
Feb 16, 2023
CVSS 8.8
EPSS 0.00
CVE-2022-41334 HIGH
FortiOS 7.0.0-7.0.7 - Unauthenticated Cross-Site Scripting via Redir Parameter
Feb 16, 2023
CVSS 8.8
EPSS 0.01
CVE-2022-40683 HIGH
Fortinet FortiWeb 7.0.0-7.0.3 - Double Free via Crafted Commands
Feb 16, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-40678 HIGH
FortiNAC 8.5.0-9.4.0 - Insufficiently Protected Credentials
Feb 16, 2023
CVSS 7.4
EPSS 0.00
CVE-2022-40677 HIGH
Fortinet FortiNAC <9.4.0 - Command Injection
Feb 16, 2023
CVSS 7.2
EPSS 0.01
CVE-2022-40675 MEDIUM
Fortinet FortiNAC 8.3.7-9.4.1 - Cryptographic Issues
Feb 16, 2023
CVSS 6.5
EPSS 0.00
CVE-2022-39954 HIGH
FortiNAC 8.3.7-9.4.1 - XML External Entity Injection via Crafted XML Documents
Feb 16, 2023
CVSS 7.3
EPSS 0.00
CVE-2022-39952 CRITICAL NUCLEI
Fortinet FortiNAC keyUpload.jsp arbitrary file write
Feb 16, 2023
CVSS 9.8
EPSS 0.94
CVE-2022-39948 MEDIUM
FortiOS 6.0.0-7.0.7 and FortiProxy 1.2.0-2.0.8 - Unauthenticated Man-in-the-Middle via Improper Certificate Validation
Feb 16, 2023
CVSS 4.8
EPSS 0.00
CVE-2022-38378 MEDIUM
Fortinet FortiOS <7.2.0-7.0.7 - Privilege Escalation
Feb 16, 2023
CVSS 4.2
EPSS 0.00
CVE-2022-38376 MEDIUM
Fortinet FortiNAC < 9.4.1 - Cross-Site Scripting via Crafted HTTP Requests
Feb 16, 2023
CVSS 6.1
EPSS 0.00
CVE-2022-38375 CRITICAL
Fortinet FortiNAC <9.4.1 - Auth Bypass
Feb 16, 2023
CVSS 9.1
EPSS 0.01
CVE-2022-33871 MEDIUM
FortiWeb <=7.0.1/6.4/6.3.19 Authenticated Stack Overflow via CLI Backup
Feb 16, 2023
CVSS 6.6
EPSS 0.01
CVE-2022-33869 HIGH
FortiWAN <4.5.9 - Command Injection
Feb 16, 2023
CVSS 8.8
EPSS 0.01
CVE-2022-30306 MEDIUM
FortiWeb 6.3.6-6.3.19, 6.4, <=7.0.1 - Authenticated Stack-based Buffer Overflow via CA Sign Password
Feb 16, 2023
CVSS 6.6
EPSS 0.01
CVE-2022-30304 MEDIUM
FortiAnalyzer < 7.2.1, < 7.0.4, < 6.4.8 - Stored XSS via FortiWeb Attack Event Logview URL
Feb 16, 2023
CVSS 4.3
EPSS 0.01
CVE-2022-30303 HIGH
FortiWeb 6.3.0-6.3.19, 6.4, 7.0.0-7.0.1 - Authenticated OS Command Injection via Crafted HTTP Requests
Feb 16, 2023
CVSS 8.8
EPSS 0.01
CVE-2022-30300 MEDIUM
FortiWeb 6.3.6-6.3.18, 7.0.0-7.0.1 - Authenticated Path Traversal via HTTP GET Request
Feb 16, 2023
CVSS 6.5
EPSS 0.00
CVE-2022-30299 MEDIUM
FortiWeb 6.0.0-6.0.7, 6.1-6.3.19, 6.4, 7.0.0-7.0.1 - Authenticated Path Traversal via API
Feb 16, 2023
CVSS 5.3
EPSS 0.01
Products
fortios 267 fortiweb 124 fortiproxy 117 fortimanager 112 fortianalyzer 92 forticlient 85 fortisandbox 58 fortimail 46 fortiportal 44 fortiadc 43 fortisoar 31 fortinac 30 fortisiem 29 fortimanager_cloud 27 fortipam 25 fortivoice 24 fortiauthenticator 23 fortiwlm 23 fortiswitchmanager 19 fortinet_antivirus 18 fortianalyzer_cloud 17 fortitester 16 fortiwan 16 fortimanager_firmware 15 fortiswitch 14 fortiwlc 14 FortiOS 13 fortianalyzer_big_data 13 forticlientems 13 fortianalyzer_firmware 12
Quick Filters
Critical CVEs With Exploits In CISA KEV