fortinet

1,136 tracked vulnerabilities.

CVE-2022-29055 HIGH
Fortinet FortiOS <7.2.0 - Memory Corruption
Oct 18, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-40684 CRITICAL KEVNUCLEI
Fortinet Fortiproxy < 7.0.7 - Authentication Bypass
Oct 18, 2022
CVSS 9.8
EPSS 1.00
CVE-2022-35846 HIGH
FortiTester <4.2.0 - Info Disclosure
Oct 18, 2022
CVSS 8.1
EPSS 0.01
CVE-2022-35844 MEDIUM
FortiTester <4.2.0 - Command Injection
Oct 18, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-26121 LOW
FortiAnalyzer FortiManager GUI <7.0.4 - Info Disclosure
Oct 10, 2022
CVSS 3.7
EPSS 0.01
CVE-2022-29061 HIGH
Fortinet FortiSOAR <7.2.1 - Command Injection
Sep 09, 2022
CVSS 7.2
EPSS 0.02
CVE-2022-35847 MEDIUM
FortiSOAR <7.2.0, <7.0.3-7.0.0, <6.4.4-6.4.0 - RCE
Sep 06, 2022
CVSS 6.3
EPSS 0.01
CVE-2022-30298 HIGH
FortiSOAR < 7.2.1 - Privilege Escalation via Python Command Execution
Sep 06, 2022
CVSS 7.0
EPSS 0.00
CVE-2022-29062 MEDIUM
Fortinet FortiSOAR <7.2.1 - Path Traversal
Sep 06, 2022
CVSS 6.3
EPSS 0.01
CVE-2022-29058 HIGH
FortiAP 6.0.0-6.4.7, 7.0.0-7.0.3, 7.2.0; FortiAP-S/W2/U - Authenticated OS Command Injection
Sep 06, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-29053 LOW
FortiOS 7.2.0, 7.0.0-7.0.5 - Missing Cryptographic Steps in Keytab File Encryption
Sep 06, 2022
CVSS 2.3
EPSS 0.00
CVE-2022-27491 MEDIUM
FortiOS IPS Engine 4.000-4.085, 5.001-5.258, 6.001-6.121, 7.001-7.113, 7.201-7.214 - DoS via Crafted TCP Requests
Sep 06, 2022
CVSS 6.8
EPSS 0.01
CVE-2022-26114 MEDIUM
FortiMail < 7.2.0 - Unauthenticated Stored Cross-Site Scripting via Crafted Mail Messages
Sep 06, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-22299 HIGH
FortiADC/FortiProxy <6.3 - Format String
Aug 05, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-27484 MEDIUM
FortiADC 5.0.0-6.2.3 - Authenticated Password Change Bypass via Crafted HTTP Request
Aug 03, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-23442 MEDIUM
FortiOS <7.0.5 - Privilege Escalation
Aug 03, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-30302 MEDIUM
FortiDeceptor <=4.0.1 Authenticated Path Traversal & Arbitrary File Deletion
Jul 19, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-30301 HIGH
FortiAP-U 5.4.0-5.4.6, 6.0.0-6.0.4, 6.2.0-6.2.3 - Authenticated Path Traversal via CLI Commands
Jul 19, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-29060 HIGH
FortiDDoS API <5.5.1 - Code Injection
Jul 19, 2022
CVSS 8.1
EPSS 0.01
CVE-2022-29057 MEDIUM
Fortinet FortiEDR <5.1.0, 5.0.3-4.0.0 - XSS
Jul 19, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-27483 HIGH
FortiAnalyzer/FortiManager OS Command Injection via Diagnose System CLI
Jul 19, 2022
CVSS 7.2
EPSS 0.02
CVE-2022-26113 HIGH
FortiClientWindows <7.0.3-6.4.7-6.2.9-6.0.10 - Privilege Escalation
Jul 19, 2022
CVSS 7.7
EPSS 0.00
CVE-2022-26120 MEDIUM
FortiADC 5.0.0-6.2.2 and 7.0.0-7.0.1 - Authenticated SQL Injection via HTTP Requests
Jul 18, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-26118 MEDIUM
FortiManager & FortiAnalyzer <7.0.4 - Privilege Escalation
Jul 18, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-26117 HIGH
FortiNAC <=9.2.3 Authenticated MySQL Database Access via Empty Password
Jul 18, 2022
CVSS 8.8
EPSS 0.01