Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / fortinet

fortinet

1,122 tracked vulnerabilities.

CVE-2019-16155 HIGH

FortiClient for Linux <6.2.1-6.2.2 - Privilege Escalation

CVE-2019-17652 MEDIUM

FortiClient < 6.2.1 - Stack Buffer Overflow via StartAvCustomScan IPC Request

CVE-2019-16152 MEDIUM

FortiClient for Linux < 6.2.1 - Denial of Service via Crafted IPC Client Requests

CVE-2019-15711 HIGH

FortiClient < 6.2.1 - Privilege Escalation via ExportLogs IPC Request Injection

CVE-2019-17651 MEDIUM

FortiSIEM < 5.2.5 - Authenticated Stored Cross-Site Scripting via Device Maintenance Schedule Description

CVE-2019-15712 HIGH

FortiMail 5.4.10 and below, 6.0.0-6.0.6, 6.2.0 - Improper Access Control in Admin WebUI

CVE-2019-15707 MEDIUM

FortiMail 6.2.0, 6.0.0-6.0.6, <5.4.10 - Authenticated Improper Access Control in Admin WebUI

CVE-2019-5593 MEDIUM

FortiOS < 5.6.10, 6.0.0-6.0.6, 6.2.0-6.2.1 - Unauthenticated Private Key Exposure via CLI Console

CVE-2019-16153 CRITICAL

Fortinet FortiSIEM <5.2.5 - Info Disclosure

CVE-2019-6700 MEDIUM

FortiSIEM < 5.2.5 - Authenticated Information Exposure via External Authentication Profile Form

CVE-2019-16154 MEDIUM

FortiAuthenticator WEB UI 6.0.0 - XSS

CVE-2019-15705 HIGH

FortiOS < 6.0.6 - Unauthenticated Denial of Service via SSL VPN Portal POST Request

CVE-2019-6693 MEDIUM KEV

FortiOS < 5.6.10 - Use of Hard-coded Credentials in Configuration Backup

CVE-2019-17650 HIGH

FortiClient < 6.2.1 - Local Privilege Escalation via Root Process Command Injection

CVE-2019-15704 MEDIUM

FortiClient for Mac >=6.0.0 <6.0.7 - Sensitive Information Exposure via Console Log

CVE-2019-6692 HIGH

FortiClient < 6.2.0 - DLL Preload Arbitrary Code Execution

CVE-2019-15703 HIGH

Fortinet FortiOS <6.2.1 - Info Disclosure

CVE-2019-5590 MEDIUM

FortiWeb < 6.0.2 - Cross-Site Scripting via HTML Report URL

CVE-2019-6695 CRITICAL

FortiManager < 6.0.6 - Insufficient Verification of Data Authenticity

CVE-2019-5594 MEDIUM

FortiNAC 8.3.0-8.3.6 and 8.5.0 - Unauthenticated Reflected Cross-Site Scripting via Search Field

CVE-2019-6698 CRITICAL

FortiRecorder Firmware < 2.7.4 - Unauthenticated Use of Hard-coded Credentials

CVE-2019-5592 MEDIUM

FortiOS IPS Engine < 3.00547 - Padding Oracle Vulnerabilities via CBC Padding Implementation

CVE-2019-13402 HIGH

Dynacolor FCM-MB40 v1.2.0.0 - Info Disclosure

CVE-2019-13401 HIGH

Fortinet FCM-MB40 1.2.0.0 - Cross-Site Request Forgery in cgi-bin Scripts

CVE-2019-13400 CRITICAL

Fortinet FCM-MB40 v1.2.0.0 - Insufficiently Protected Credentials via Cleartext Storage

Previous Page 37 of 45 Next

Products

fortios 267 fortiweb 124 fortiproxy 117 fortimanager 112 fortianalyzer 92 forticlient 85 fortisandbox 58 fortimail 46 fortiportal 44 fortiadc 43 fortisoar 31 fortinac 30 fortisiem 29 fortimanager_cloud 27 fortipam 25 fortivoice 24 fortiauthenticator 23 fortiwlm 23 fortiswitchmanager 19 fortinet_antivirus 18 fortianalyzer_cloud 17 fortitester 16 fortiwan 16 fortimanager_firmware 15 fortiswitch 14 fortiwlc 14 FortiOS 13 fortianalyzer_big_data 13 forticlientems 13 fortianalyzer_firmware 12

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy