fortinet
1,136 tracked vulnerabilities.
CVE-2022-41331
CRITICAL
FortiPresence <1.2.1 - Info Disclosure
Apr 11, 2023
CVSS 9.8
EPSS 0.01
CVE-2022-41330
HIGH
Fortinet FortiOS <7.2.4, FortiProxy <7.0.8 - XSS
Apr 11, 2023
CVSS 8.8
EPSS 0.01
CVE-2022-40682
HIGH
FortiClient 6.0.0-6.0.10, 6.2.0-6.2.9, 6.4.0-6.4.9, 7.0.0-7.0.7 - RCE via Named Pipe
Apr 11, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-40679
HIGH
FortiADC 5.x-7.1.0, FortiDDoS 4.x-5.6.x, FortiDDoS-F 6.1.0-6.4.0 - OS Command Injection
Apr 11, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-35850
MEDIUM
FortiAuthenticator 6.1.0-6.3.3 - Unauthenticated Reflected Cross-Site Scripting via Reset-Password Page
Apr 11, 2023
CVSS 4.3
EPSS 0.00
CVE-2022-27487
HIGH
FortiSandbox 2.5.0-4.2.2 and FortiDeceptor 1.0-4.1.0 - Authenticated Unauthorized API Access via Crafted HTTP Requests
Apr 11, 2023
CVSS 8.8
EPSS 0.01
CVE-2022-27485
MEDIUM
FortiSandbox 3.0.x-3.2.3, 4.0.0-4.0.2, 4.2.0 - Authenticated SQL Injection
Apr 11, 2023
CVSS 6.5
EPSS 0.01
CVE-2022-29056
LOW
Fortinet FortiMail <6.4.0, 6.2.0-6.2.4 - DoS
Mar 09, 2023
CVSS 3.7
EPSS 0.02
CVE-2022-45861
MEDIUM
Fortinet FortiOS <6.4.11 - Use After Free
Mar 07, 2023
CVSS 6.5
EPSS 0.01
CVE-2022-42476
HIGH
FortiProxy 1.1.0-1.1.5 - Privilege Escalation via CLI Request Path Traversal
Mar 07, 2023
CVSS 8.2
EPSS 0.00
CVE-2022-41333
HIGH
FortiRecorder < 6.0.11 - Unauthenticated Denial of Service via Crafted GET Requests
Mar 07, 2023
CVSS 7.5
EPSS 0.07
CVE-2022-41329
MEDIUM
Fortinet FortiProxy <7.2.1, FortiOS <7.2.3 - Info Disclosure
Mar 07, 2023
CVSS 5.3
EPSS 0.01
CVE-2022-41328
MEDIUM
KEV
Fortinet FortiOS <7.2.3-6.4.11 - Path Traversal
Mar 07, 2023
CVSS 6.7
EPSS 0.12
CVE-2022-40676
HIGH
FortiNAC 8.5.0-8.5.4, 8.6.0-8.6.5, 8.7.0-8.7.6, 8.8.0-8.8.11, 9.1.0-9.1.8, 9.2.0-9.2.5, 9.4.0 - Cross-Site Scripting
Mar 07, 2023
CVSS 7.5
EPSS 0.01
CVE-2022-39953
HIGH
Fortinet FortiNAC Privilege Escalation via Crafted Commands
Mar 07, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-39951
HIGH
FortiWeb 6.3.6-6.3.20 and 7.0.0-7.0.2 - OS Command Injection via Crafted HTTP Requests
Mar 07, 2023
CVSS 7.2
EPSS 0.02
CVE-2022-27490
MEDIUM
Fortinet Fortianalyzer < 5.6.11 - Information Disclosure
Mar 07, 2023
CVSS 5.4
EPSS 0.00
CVE-2022-22297
MEDIUM
FortiWeb/FortiRecorder <6.4.1/<6.3.17 - Info Disclosure
Mar 07, 2023
CVSS 5.5
EPSS 0.00
CVE-2022-43954
MEDIUM
FortiPortal <7.0.2 - Info Disclosure
Feb 16, 2023
CVSS 4.3
EPSS 0.01
CVE-2022-42472
MEDIUM
FortiOS/FortiProxy HTTP Request Splitting (Auth Required)
Feb 16, 2023
CVSS 4.2
EPSS 0.00
CVE-2022-41335
HIGH
Fortinet FortiOS <7.2.2 - Path Traversal
Feb 16, 2023
CVSS 8.8
EPSS 0.01
CVE-2022-41334
HIGH
FortiOS 7.0.0-7.0.7 - Unauthenticated Cross-Site Scripting via Redir Parameter
Feb 16, 2023
CVSS 8.8
EPSS 0.01
CVE-2022-40683
HIGH
Fortinet FortiWeb 7.0.0-7.0.3 - Double Free via Crafted Commands
Feb 16, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-40678
HIGH
FortiNAC 8.5.0-9.4.0 - Insufficiently Protected Credentials
Feb 16, 2023
CVSS 7.4
EPSS 0.00
CVE-2022-40677
HIGH
Fortinet FortiNAC <9.4.0 - Command Injection
Feb 16, 2023
CVSS 7.2
EPSS 0.01
Products
fortios 268
fortiweb 124
fortiproxy 118
fortimanager 112
fortianalyzer 92
forticlient 85
fortisandbox 59
FortiOS 47
fortimail 46
fortiportal 45
fortiadc 43
fortisoar 31
fortinac 30
FortiProxy 29
fortisiem 29
fortimanager_cloud 27
fortipam 25
fortivoice 24
fortiauthenticator 23
fortiwlm 23
fortiswitchmanager 19
fortinet_antivirus 18
fortianalyzer_cloud 17
FortiPAM 16
fortitester 16
fortiwan 16
fortimanager_firmware 15
fortiswitch 14
fortiwlc 14
fortianalyzer_big_data 13
Quick Filters