fortinet

1,122 tracked vulnerabilities.

CVE-2020-9286 MEDIUM
FortiADC < 5.3.4 - Authenticated Improper Authorization
Apr 07, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-6647 MEDIUM
FortiADC < 5.3.4 - Authenticated Cross-Site Scripting via Dashboard Name Parameter
Apr 07, 2020
CVSS 5.4
EPSS 0.00
CVE-2020-6646 MEDIUM
FortiWeb < 6.2.2 - Authenticated Stored Cross-Site Scripting via Disclaimer Description
Mar 17, 2020
CVSS 5.4
EPSS 0.00
CVE-2020-9290 HIGH
FortiClient < 6.2.3 - Uncontrolled Search Path Element via Malicious Filter Library DLL
Mar 15, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-9287 HIGH
FortiClient EMS < 6.2.1 - Unauthenticated Arbitrary Code Execution via Filter Library DLL Hijacking
Mar 15, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-6643 MEDIUM
FortiIsolator < 1.2.2 - Authenticated Cross-Site Scripting via URL Description
Mar 12, 2020
CVSS 5.4
EPSS 0.00
CVE-2019-16149 MEDIUM
FortiClientEMS < 6.2.1 - Remote Code Execution via User Profile Injection
Mar 28, 2025
CVSS 5.5
EPSS 0.00
CVE-2019-16151 MEDIUM
FortiOS 6.2.0-6.2.9 - Unauthenticated Cross-Site Scripting via Host Header
Mar 21, 2025
CVSS 4.7
EPSS 0.00
CVE-2019-6697 MEDIUM
FortiOS 6.0.0-6.0.6 - Unauthenticated Stored Cross-Site Scripting via DHCP Hostname Parameter
Mar 17, 2025
CVSS 5.3
EPSS 0.00
CVE-2019-17659 LOW
FortiSIEM < 5.2.7 - Unauthenticated SSH Access via Hard-coded Cryptographic Key
Mar 17, 2025
CVSS 3.7
EPSS 0.01
CVE-2019-15706 MEDIUM
FortiProxy 1.2.0-1.2.9 and FortiOS 5.6.0-5.6.12 - Authenticated Stored Cross-Site Scripting in SSL VPN Portal
Mar 17, 2025
CVSS 4.1
EPSS 0.00
CVE-2019-17656 MEDIUM
FortiProxy 1.0.x-1.2.9 and FortiOS < 6.0.10 - Authenticated Denial of Service via Malformed PUT Request
Apr 12, 2021
CVSS 5.4
EPSS 0.03
CVE-2019-5591 MEDIUM KEVNUCLEI
FortiOS < 6.2.0 - Unauthenticated Sensitive Information Interception via LDAP Server Impersonation
Aug 14, 2020
CVSS 6.5
EPSS 0.51
CVE-2019-17655 MEDIUM
FortiOS < 6.2.3 - Cleartext Storage of Sensitive Information in SSL VPN Session Files
Jun 16, 2020
CVSS 5.3
EPSS 0.00
CVE-2019-16150 MEDIUM
FortiClient for Windows <6.4.0 - Info Disclosure
Jun 04, 2020
CVSS 5.5
EPSS 0.00
CVE-2019-15709 MEDIUM
FortiAP-S/W2 < 6.0.5 and FortiAP-U < 6.0.1 - Authenticated Arbitrary File Write via tcpdump CLI Command
Jun 01, 2020
CVSS 6.5
EPSS 0.01
CVE-2019-17657 HIGH
Fortinet Fortianalyzer < 6.2.3 - Denial of Service
Apr 07, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-6696 MEDIUM
FortiOS 5.4.0-6.0.8 - URL Redirection via Admin Initial Password Change Webpage
Mar 15, 2020
CVSS 6.1
EPSS 0.00
CVE-2019-17654 HIGH
FortiManager <= 6.0.6 - Unauthenticated Cross-Site WebSocket Hijacking
Mar 15, 2020
CVSS 8.8
EPSS 0.00
CVE-2019-15708 MEDIUM
FortiAP < 6.0.5 and FortiAP-U < 6.0.0 - Authenticated OS Command Injection via ifconfig Command
Mar 15, 2020
CVSS 6.7
EPSS 0.00
CVE-2019-6699 MEDIUM
Fortinet FortiADC < 5.3.3 - Stored Cross-Site Scripting via Traffic Group Interface
Mar 13, 2020
CVSS 5.4
EPSS 0.00
CVE-2019-16157 MEDIUM
Fortinet FortiWeb <6.2.0 - Info Disclosure
Mar 13, 2020
CVSS 6.5
EPSS 0.00
CVE-2019-17653 HIGH
Fortinet FortiSIEM 5.2.5 - Cross-Site Request Forgery
Mar 12, 2020
CVSS 8.8
EPSS 0.00
CVE-2019-17658 CRITICAL
FortiClient Windows <6.2.2 - Privilege Escalation
Mar 12, 2020
CVSS 9.8
EPSS 0.00
CVE-2019-16156 MEDIUM
FortiWeb 6.0.5 6.2.0 6.1.1 - Unauthenticated Cross-Site Scripting in Anomaly Detection Parameter Name
Mar 12, 2020
CVSS 6.1
EPSS 0.01
Products
fortios 267 fortiweb 124 fortiproxy 117 fortimanager 112 fortianalyzer 92 forticlient 85 fortisandbox 58 fortimail 46 fortiportal 44 fortiadc 43 fortisoar 31 fortinac 30 fortisiem 29 fortimanager_cloud 27 fortipam 25 fortivoice 24 fortiauthenticator 23 fortiwlm 23 fortiswitchmanager 19 fortinet_antivirus 18 fortianalyzer_cloud 17 fortitester 16 fortiwan 16 fortimanager_firmware 15 fortiswitch 14 fortiwlc 14 FortiOS 13 fortianalyzer_big_data 13 forticlientems 13 fortianalyzer_firmware 12
Quick Filters
Critical CVEs With Exploits In CISA KEV