fortinet
1,122 tracked vulnerabilities.
CVE-2021-32584
MEDIUM
FortiWLC <=8.6.0 Unauthenticated Improper Access Control via Web Management CGI
Mar 17, 2025
CVSS 5.3
EPSS 0.00
CVE-2021-26087
MEDIUM
FortiWLC <= 8.6.0, <= 8.5.3, <= 8.4.8, <= 8.3.3 - Stored Cross-Site Scripting via Web Interface
Mar 17, 2025
CVSS 4.3
EPSS 0.00
CVE-2021-22126
MEDIUM
FortiWLC 8.2.6-8.2.7, 8.3.2-8.3.3, <=8.4.8, <=8.5.2 - Authenticated Hard-Coded Password Use
Mar 17, 2025
CVSS 6.7
EPSS 0.00
CVE-2021-26102
CRITICAL
FortiWAN 4.4.0-4.5.7 - Unauthenticated Path Traversal via Crafted POST Request
Dec 19, 2024
CVSS 9.8
EPSS 0.61
CVE-2021-32589
HIGH
FortiAnalyzer and FortiManager - Use-After-Free via fgfm Port Request
Dec 19, 2024
CVSS 8.1
EPSS 0.09
CVE-2021-26115
HIGH
FortiWAN < 4.5.8 - Authenticated Privilege Escalation via Command Line Interface Command Injection
Dec 19, 2024
CVSS 7.8
EPSS 0.00
CVE-2021-26093
HIGH
FortiWLC <8.6.0 - Memory Corruption
Dec 19, 2024
CVSS 7.3
EPSS 0.00
CVE-2021-44172
MEDIUM
FortiClientEMS 6.2.0-6.2.8, 6.4.x, 7.0.0-7.0.4, 7.0.6-7.0.7 - Sensitive Information Exposure via Management Interface
Sep 13, 2023
CVSS 4.3
EPSS 0.00
CVE-2021-43072
MEDIUM
Fortinet FortiAnalyzer <7.0.2 - Buffer Overflow
Jul 18, 2023
CVSS 6.7
EPSS 0.00
CVE-2021-43074
MEDIUM
FortiProxy < 2.0.8 - Improper Verification of Cryptographic Signature
Feb 16, 2023
CVSS 4.3
EPSS 0.00
CVE-2021-42761
CRITICAL
FortiWeb 5.9.0-5.9.1, 6.0.0-6.0.7, 6.1.0-6.1.2, 6.2.0-6.2.6, 6.3.0-6.3.16, 6.4 - Unauthenticated Session Fixation
Feb 16, 2023
CVSS 9.0
EPSS 0.02
CVE-2021-42756
CRITICAL
FortiWeb <=6.4.x Unauthenticated Remote Code Execution via Crafted HTTP Requests
Feb 16, 2023
CVSS 9.8
EPSS 0.66
CVE-2021-44171
CRITICAL
FortiOS 6.0.0-6.0.14, 6.2.0-6.2.10, 6.4.0-6.4.8, 7.0.0-7.0.3 - OS Command Injection via Diagnostic CLI Commands
Oct 10, 2022
CVSS 9.0
EPSS 0.00
CVE-2021-43080
MEDIUM
FortiOS 6.4.0-6.4.9, 7.0.0-7.0.5, 7.2.0 - Stored XSS via Threat Feed IP Address
Sep 06, 2022
CVSS 4.6
EPSS 0.00
CVE-2021-43076
MEDIUM
FortiADC <6.2.1-5.3.7 - Privilege Escalation
Sep 06, 2022
CVSS 6.3
EPSS 0.00
CVE-2021-41031
HIGH
FortiClient for Windows <7.0.2-6.4.6-6.2.9 - Path Traversal
Jul 18, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-22131
MEDIUM
FortiToken Mobile <= 5.0.3 (Android), <= 5.2.0 (iOS), <= 4.0.3 (Windows) - Improper Certificate Validation
Jul 18, 2022
CVSS 6.4
EPSS 0.00
CVE-2021-44170
MEDIUM
FortiProxy < 1.0.7 and FortiOS < 6.0.14 - Authenticated Stack-Based Buffer Overflow via Command Line Arguments
Jul 18, 2022
CVSS 6.7
EPSS 0.00
CVE-2021-42755
MEDIUM
FortiProxy 7.0.0, < 2.0.7, 1.2.x, 1.1.x, 1.0.x - Unauthenticated Denial of Service via Integer Overflow in dhcpd Daemon
Jul 18, 2022
CVSS 4.3
EPSS 0.00
CVE-2021-43066
HIGH
FortiClientWindows < 6.4.7 - Privilege Escalation via MSI Installer
May 11, 2022
CVSS 8.4
EPSS 0.00
CVE-2021-44167
MEDIUM
FortiClient for Linux <= 7.0.2 - Unauthenticated Sensitive Information Exposure via Symbolic Links
May 11, 2022
CVSS 6.8
EPSS 0.00
CVE-2021-43081
MEDIUM
FortiOS <7.0.3,6.4.8,6.2.10,6.0.14-6.0.0 - XSS
May 11, 2022
CVSS 6.1
EPSS 0.01
CVE-2021-43206
MEDIUM
Fortinet FortiOS <7.0.4 - Info Disclosure
May 04, 2022
CVSS 4.3
EPSS 0.00
CVE-2021-41032
MEDIUM
FortiOS <6.4.8, <7.0.3 - Info Disclosure
May 04, 2022
CVSS 6.3
EPSS 0.00
CVE-2021-41020
HIGH
FortiIsolator <2.3.2 - Privilege Escalation
May 04, 2022
CVSS 8.8
EPSS 0.00
Products
fortios 267
fortiweb 124
fortiproxy 117
fortimanager 112
fortianalyzer 92
forticlient 85
fortisandbox 58
fortimail 46
fortiportal 44
fortiadc 43
fortisoar 31
fortinac 30
fortisiem 29
fortimanager_cloud 27
fortipam 25
fortivoice 24
fortiauthenticator 23
fortiwlm 23
fortiswitchmanager 19
fortinet_antivirus 18
fortianalyzer_cloud 17
fortitester 16
fortiwan 16
fortimanager_firmware 15
fortiswitch 14
fortiwlc 14
FortiOS 13
fortianalyzer_big_data 13
forticlientems 13
fortianalyzer_firmware 12
Quick Filters