Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / fortinet

fortinet

1,122 tracked vulnerabilities.

CVE-2018-1352 CRITICAL

FortiOS 5.6.0 - Remote Code Execution via SSH Username Format String

CVE-2018-13374 MEDIUM KEV

FortiOS < 6.0.3 and FortiADC 5.4.0-5.4.4 - LDAP Server Credential Exposure via Connectivity Test Request

CVE-2018-13376 HIGH

Fortinet FortiOS <5.6.3, <5.4.7, <5.2 - Memory Corruption

CVE-2018-9194 MEDIUM

FortiOS 5.4.6-5.4.9, 6.0.0-6.0.1 - Plaintext Recovery and Man-in-the-Middle Attack via RSA PKCS #1 v1.5 Encryption

CVE-2018-9192 MEDIUM

FortiOS 5.4.6-5.4.9, 6.0.0-6.0.1 - Plaintext Recovery and Man-in-the-Middle Attack via RSA PKCS #1 v1.5 Encryption

CVE-2018-1353 MEDIUM

Fortinet FortiManager < 6.0.1 - Unauthorized Interface Settings Exposure via ADOM Assignment

CVE-2018-9185 HIGH

Fortinet FortiOS < 6.0.0 - Unauthenticated Exposure of Web Portal Credentials via Single Sign-On Bookmark Feature

CVE-2018-1351 MEDIUM

Fortinet FortiManager < 6.0.0 - Cross-Site Scripting via Remote Device CLI Config Log

CVE-2018-1355 MEDIUM

FortiAnalyzer and FortiManager < 5.6.5 - Open Redirect via FortiView PDF Conversion

CVE-2018-1354 MEDIUM

FortiAnalyzer and FortiManager < 6.0.0 - Unauthenticated Arbitrary Avatar Picture Modification

CVE-2018-9186 MEDIUM

Fortinet FortiAuthenticator 4.0.0-5.2.9 - Cross-Site Scripting via HTTP Referer Header

CVE-2017-17544 HIGH

Fortinet FortiOS <5.4.0, 5.6.0-5.6.10, 6.0.0-6.0.6 Privilege Escalation via Config Restore

CVE-2017-7342 CRITICAL

FortiPortal <= 4.0.0 - Unauthenticated Remote Code Execution via Weak Password Recovery Process

CVE-2017-7340 MEDIUM

Fortinet FortiPortal < 4.0.0 - Cross-Site Scripting via FortiView applicationSearch Parameter

CVE-2017-17541 MEDIUM

FortiAnalyzer and FortiManager < 5.6.4 - Stored Cross-Site Scripting via CA and CRL Certificate Import

CVE-2017-14185 MEDIUM

FortiOS 5.2.0-5.2.12, 5.4.0-5.4.8, 5.6.0-5.6.2 - Information Disclosure via SSL-VPN Web Portal

CVE-2017-14187 MEDIUM

Fortinet FortiOS <5.6.3 - Privilege Escalation

CVE-2017-17540 CRITICAL

Fortinet FortiWLC 7.0-7.0.10 - Use of Hard-coded Credentials

CVE-2017-17539 CRITICAL

FortiWLC < 7.0.11 - Unauthenticated Remote Shell Access via Hardcoded Account

CVE-2017-17543 HIGH

FortiClient < 5.6.0 and FortiClient SSLVPN Client < 4.4.2335 - Inadequate Encryption Strength

CVE-2017-14191 MEDIUM

Fortinet FortiWeb <6.1.0 - Auth Bypass

CVE-2017-14190 MEDIUM

FortiOS < 5.2.0 - Cross-Site Scripting via Host Header

CVE-2017-14184 HIGH

Fortinet FortiClient <5.6.0 - Info Disclosure

CVE-2017-7344 HIGH

Fortinet FortiClient <5.4.3, <5.6.0 - Privilege Escalation

CVE-2017-7738 HIGH

Fortinet FortiOS <5.6.3 - Info Disclosure

Previous Page 39 of 45 Next

Products

fortios 267 fortiweb 124 fortiproxy 117 fortimanager 112 fortianalyzer 92 forticlient 85 fortisandbox 58 fortimail 46 fortiportal 44 fortiadc 43 fortisoar 31 fortinac 30 fortisiem 29 fortimanager_cloud 27 fortipam 25 fortivoice 24 fortiauthenticator 23 fortiwlm 23 fortiswitchmanager 19 fortinet_antivirus 18 fortianalyzer_cloud 17 fortitester 16 fortiwan 16 fortimanager_firmware 15 fortiswitch 14 fortiwlc 14 FortiOS 13 fortianalyzer_big_data 13 forticlientems 13 fortianalyzer_firmware 12

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy