fortinet

1,136 tracked vulnerabilities.

CVE-2019-17656 MEDIUM
FortiProxy 1.0.x-1.2.9 and FortiOS < 6.0.10 - Authenticated Denial of Service via Malformed PUT Request
Apr 12, 2021
CVSS 5.4
EPSS 0.02
CVE-2019-5591 MEDIUM KEVNUCLEI
FortiOS < 6.2.0 - Unauthenticated Sensitive Information Interception via LDAP Server Impersonation
Aug 14, 2020
CVSS 6.5
EPSS 0.19
CVE-2019-17655 MEDIUM
FortiOS < 6.2.3 - Cleartext Storage of Sensitive Information in SSL VPN Session Files
Jun 16, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-16150 MEDIUM
FortiClient for Windows <6.4.0 - Info Disclosure
Jun 04, 2020
CVSS 5.5
EPSS 0.01
CVE-2019-15709 MEDIUM
FortiAP-S/W2 < 6.0.5 and FortiAP-U < 6.0.1 - Authenticated Arbitrary File Write via tcpdump CLI Command
Jun 01, 2020
CVSS 6.5
EPSS 0.01
CVE-2019-17657 HIGH
Fortinet Fortianalyzer < 6.2.3 - Denial of Service
Apr 07, 2020
CVSS 7.5
EPSS 0.02
CVE-2019-6696 MEDIUM
FortiOS 5.4.0-6.0.8 - URL Redirection via Admin Initial Password Change Webpage
Mar 15, 2020
CVSS 6.1
EPSS 0.01
CVE-2019-17654 HIGH
FortiManager <= 6.0.6 - Unauthenticated Cross-Site WebSocket Hijacking
Mar 15, 2020
CVSS 8.8
EPSS 0.00
CVE-2019-15708 MEDIUM
FortiAP < 6.0.5 and FortiAP-U < 6.0.0 - Authenticated OS Command Injection via ifconfig Command
Mar 15, 2020
CVSS 6.7
EPSS 0.01
CVE-2019-6699 MEDIUM
Fortinet FortiADC < 5.3.3 - Stored Cross-Site Scripting via Traffic Group Interface
Mar 13, 2020
CVSS 5.4
EPSS 0.01
CVE-2019-16157 MEDIUM
Fortinet FortiWeb <6.2.0 - Info Disclosure
Mar 13, 2020
CVSS 6.5
EPSS 0.01
CVE-2019-17653 HIGH
Fortinet FortiSIEM 5.2.5 - Cross-Site Request Forgery
Mar 12, 2020
CVSS 8.8
EPSS 0.01
CVE-2019-17658 CRITICAL
FortiClient Windows <6.2.2 - Privilege Escalation
Mar 12, 2020
CVSS 9.8
EPSS 0.02
CVE-2019-16156 MEDIUM
FortiWeb 6.0.5 6.2.0 6.1.1 - Unauthenticated Cross-Site Scripting in Anomaly Detection Parameter Name
Mar 12, 2020
CVSS 6.1
EPSS 0.01
CVE-2019-16155 HIGH
FortiClient for Linux <6.2.1-6.2.2 - Privilege Escalation
Feb 07, 2020
CVSS 7.1
EPSS 0.00
CVE-2019-17652 MEDIUM
FortiClient < 6.2.1 - Stack Buffer Overflow via StartAvCustomScan IPC Request
Feb 06, 2020
CVSS 6.5
EPSS 0.01
CVE-2019-16152 MEDIUM
FortiClient for Linux < 6.2.1 - Denial of Service via Crafted IPC Client Requests
Feb 06, 2020
CVSS 6.5
EPSS 0.01
CVE-2019-15711 HIGH
FortiClient < 6.2.1 - Privilege Escalation via ExportLogs IPC Request Injection
Feb 06, 2020
CVSS 7.8
EPSS 0.01
CVE-2019-17651 MEDIUM
FortiSIEM < 5.2.5 - Authenticated Stored Cross-Site Scripting via Device Maintenance Schedule Description
Jan 28, 2020
CVSS 5.4
EPSS 0.01
CVE-2019-15712 HIGH
FortiMail 5.4.10 and below, 6.0.0-6.0.6, 6.2.0 - Improper Access Control in Admin WebUI
Jan 23, 2020
CVSS 7.2
EPSS 0.01
CVE-2019-15707 MEDIUM
FortiMail 6.2.0, 6.0.0-6.0.6, <5.4.10 - Authenticated Improper Access Control in Admin WebUI
Jan 23, 2020
CVSS 4.9
EPSS 0.01
CVE-2019-5593 MEDIUM
FortiOS < 5.6.10, 6.0.0-6.0.6, 6.2.0-6.2.1 - Unauthenticated Private Key Exposure via CLI Console
Jan 23, 2020
CVSS 5.5
EPSS 0.00
CVE-2019-16153 CRITICAL
Fortinet FortiSIEM <5.2.5 - Info Disclosure
Jan 23, 2020
CVSS 9.8
EPSS 0.01
CVE-2019-6700 MEDIUM
FortiSIEM < 5.2.5 - Authenticated Information Exposure via External Authentication Profile Form
Jan 07, 2020
CVSS 6.5
EPSS 0.01
CVE-2019-16154 MEDIUM
FortiAuthenticator WEB UI 6.0.0 - XSS
Jan 07, 2020
CVSS 6.1
EPSS 0.01