fortinet
1,136 tracked vulnerabilities.
CVE-2022-29055
HIGH
Fortinet FortiOS <7.2.0 - Memory Corruption
Oct 18, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-40684
CRITICAL
KEVNUCLEI
Fortinet Fortiproxy < 7.0.7 - Authentication Bypass
Oct 18, 2022
CVSS 9.8
EPSS 1.00
CVE-2022-35846
HIGH
FortiTester <4.2.0 - Info Disclosure
Oct 18, 2022
CVSS 8.1
EPSS 0.01
CVE-2022-35844
MEDIUM
FortiTester <4.2.0 - Command Injection
Oct 18, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-26121
LOW
FortiAnalyzer FortiManager GUI <7.0.4 - Info Disclosure
Oct 10, 2022
CVSS 3.7
EPSS 0.01
CVE-2022-29061
HIGH
Fortinet FortiSOAR <7.2.1 - Command Injection
Sep 09, 2022
CVSS 7.2
EPSS 0.02
CVE-2022-35847
MEDIUM
FortiSOAR <7.2.0, <7.0.3-7.0.0, <6.4.4-6.4.0 - RCE
Sep 06, 2022
CVSS 6.3
EPSS 0.01
CVE-2022-30298
HIGH
FortiSOAR < 7.2.1 - Privilege Escalation via Python Command Execution
Sep 06, 2022
CVSS 7.0
EPSS 0.00
CVE-2022-29062
MEDIUM
Fortinet FortiSOAR <7.2.1 - Path Traversal
Sep 06, 2022
CVSS 6.3
EPSS 0.01
CVE-2022-29058
HIGH
FortiAP 6.0.0-6.4.7, 7.0.0-7.0.3, 7.2.0; FortiAP-S/W2/U - Authenticated OS Command Injection
Sep 06, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-29053
LOW
FortiOS 7.2.0, 7.0.0-7.0.5 - Missing Cryptographic Steps in Keytab File Encryption
Sep 06, 2022
CVSS 2.3
EPSS 0.00
CVE-2022-27491
MEDIUM
FortiOS IPS Engine 4.000-4.085, 5.001-5.258, 6.001-6.121, 7.001-7.113, 7.201-7.214 - DoS via Crafted TCP Requests
Sep 06, 2022
CVSS 6.8
EPSS 0.01
CVE-2022-26114
MEDIUM
FortiMail < 7.2.0 - Unauthenticated Stored Cross-Site Scripting via Crafted Mail Messages
Sep 06, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-22299
HIGH
FortiADC/FortiProxy <6.3 - Format String
Aug 05, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-27484
MEDIUM
FortiADC 5.0.0-6.2.3 - Authenticated Password Change Bypass via Crafted HTTP Request
Aug 03, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-23442
MEDIUM
FortiOS <7.0.5 - Privilege Escalation
Aug 03, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-30302
MEDIUM
FortiDeceptor <=4.0.1 Authenticated Path Traversal & Arbitrary File Deletion
Jul 19, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-30301
HIGH
FortiAP-U 5.4.0-5.4.6, 6.0.0-6.0.4, 6.2.0-6.2.3 - Authenticated Path Traversal via CLI Commands
Jul 19, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-29060
HIGH
FortiDDoS API <5.5.1 - Code Injection
Jul 19, 2022
CVSS 8.1
EPSS 0.01
CVE-2022-29057
MEDIUM
Fortinet FortiEDR <5.1.0, 5.0.3-4.0.0 - XSS
Jul 19, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-27483
HIGH
FortiAnalyzer/FortiManager OS Command Injection via Diagnose System CLI
Jul 19, 2022
CVSS 7.2
EPSS 0.02
CVE-2022-26113
HIGH
FortiClientWindows <7.0.3-6.4.7-6.2.9-6.0.10 - Privilege Escalation
Jul 19, 2022
CVSS 7.7
EPSS 0.00
CVE-2022-26120
MEDIUM
FortiADC 5.0.0-6.2.2 and 7.0.0-7.0.1 - Authenticated SQL Injection via HTTP Requests
Jul 18, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-26118
MEDIUM
FortiManager & FortiAnalyzer <7.0.4 - Privilege Escalation
Jul 18, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-26117
HIGH
FortiNAC <=9.2.3 Authenticated MySQL Database Access via Empty Password
Jul 18, 2022
CVSS 8.8
EPSS 0.01
Products
fortios 271
fortiweb 124
fortiproxy 121
fortimanager 112
fortianalyzer 92
forticlient 85
fortisandbox 59
FortiOS 47
fortimail 46
fortiportal 45
fortiadc 43
fortisoar 31
fortinac 30
fortisiem 30
FortiProxy 29
fortimanager_cloud 27
fortipam 26
fortivoice 24
fortiauthenticator 23
fortiwlm 23
fortiswitchmanager 19
fortinet_antivirus 18
fortianalyzer_cloud 17
FortiPAM 16
fortitester 16
fortiwan 16
fortimanager_firmware 15
fortiswitch 14
fortiwlc 14
fortianalyzer_big_data 13
Quick Filters