fortinet

1,136 tracked vulnerabilities.

CVE-2021-26103 MEDIUM
FortiProxy < 1.2.11 and FortiGate < 6.2.9, 6.4.6, 7.0.0 - Unauthenticated Cross-Site Request Forgery via SSL VPN Portal
Dec 08, 2021
CVSS 6.3
EPSS 0.00
CVE-2021-42758 HIGH
FortiWLC <= 8.6.1 - Authenticated Privilege Escalation via GUI Restriction Bypass
Dec 08, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-42757 MEDIUM
Fortinet Fortiadc < 6.1.5 - Out-of-Bounds Write
Dec 08, 2021
CVSS 6.7
EPSS 0.00
CVE-2021-36180 HIGH
FortiWeb <6.4.1,<6.3.15,<6.2.5 - Command Injection
Dec 08, 2021
CVSS 8.1
EPSS 0.01
CVE-2021-26110 HIGH
FortiOS <7.0.0,6.4.6,6.2.9,6.0.12 - Privilege Escalation
Dec 08, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-32592 HIGH
FortiClientWindows/EMS DLL Hijack via OpenSSL Engine Library
Dec 01, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-32600 MEDIUM
FortiOS 5.6.x, 6.0.x, 6.2.0-6.2.9, 6.4.0-6.4.6, 7.0.0 - Authenticated Information Exposure via VDOM CLI
Nov 17, 2021
CVSS 5.0
EPSS 0.01
CVE-2021-36192 MEDIUM
FortiManager 5.6.0-5.6.10 - Exposure of Sensitive Information via ADOM Script Access
Nov 03, 2021
CVSS 5.2
EPSS 0.00
CVE-2021-42754 LOW
FortiClientMacOS <= 6.4.5 and <= 7.0.0 - Authenticated Camera Hijack via Malicious dylib File
Nov 02, 2021
CVSS 3.2
EPSS 0.00
CVE-2021-41023 MEDIUM
Fortinet FortiSIEM <4.1.4 - Info Disclosure
Nov 02, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-41022 HIGH
Fortinet FortiSIEM <4.1.4 - Privilege Escalation
Nov 02, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-36187 MEDIUM
FortiWeb <= 6.4.0, <= 6.3.15, <= 6.2.5 - Denial of Service via Crafted HTTP Requests
Nov 02, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-36186 HIGH
Fortinet FortiWeb <6.4.0 - Buffer Overflow
Nov 02, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-36185 HIGH
Fortinet FortiWLM <8.6.1 - Code Injection
Nov 02, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-36184 HIGH
Fortinet FortiWLM <8.6.1 - SQL Injection
Nov 02, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-36183 HIGH
FortiClient for Windows <7.0.1 & <6.4.2 - Privilege Escalation
Nov 02, 2021
CVSS 7.4
EPSS 0.00
CVE-2021-36176 MEDIUM
FortiPortal 4.0.0-6.0.5 - Denial of Service via Multiple HTTP Requests
Nov 02, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-36174 MEDIUM
FortiPortal < 6.0.6 - Denial of Service via License Verification Function
Nov 02, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-41019 LOW
FortiOS < 6.4.6 - Improper Certificate Validation via LDAP Server Connection
Nov 02, 2021
CVSS 3.5
EPSS 0.01
CVE-2021-36181 LOW
FortiPortal <6.0.6 - Use After Free
Nov 02, 2021
CVSS 3.1
EPSS 0.00
CVE-2021-36172 MEDIUM
FortiPortal <6.0.6 - DoS/Info Disclosure
Nov 02, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-32595 MEDIUM
FortiPortal < 5.3.7 - Denial of Service via Multiple HTTP Requests
Nov 02, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-26107 MEDIUM
FortiManager <6.4.5 - Privilege Escalation
Nov 02, 2021
CVSS 6.3
EPSS 0.00
CVE-2021-36178 MEDIUM
Fortinet FortiSDNConnector <1.1.7 - Info Disclosure
Oct 06, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-36175 MEDIUM
FortiWeb 6.0.0-6.2.3 - Authenticated Stored Cross-Site Scripting via Name/Description/Comments Parameters
Oct 06, 2021
CVSS 4.1
EPSS 0.01