fortinet
1,122 tracked vulnerabilities.
CVE-2025-31104
HIGH
FortiADC 6.1.0-7.1.4, 7.2.0-7.2.7, 7.4.0-7.4.6, 7.6.0-7.6.1 - Authenticated OS Command Injection via HTTP Requests
Jun 10, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-25250
MEDIUM
FortiOS <7.6.0, <7.4.7, all 7.2, all 7.0, all 6.4 - Info Disclosure
Jun 10, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-24471
MEDIUM
Fortinet Fortisase < 7.4.8 - Improper Certificate Validation
Jun 10, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-22256
MEDIUM
Fortinet FortiPAM <1.4.1 - Privilege Escalation
Jun 10, 2025
CVSS 6.3
EPSS 0.00
CVE-2025-22254
MEDIUM
Fortinet FortiOS <7.6.1 - Privilege Escalation
Jun 10, 2025
CVSS 6.6
EPSS 0.00
CVE-2025-22251
LOW
FortiOS 6.4.0-7.4.5, 7.6.0 - Unauthenticated Session Injection via FGSP Packet
Jun 10, 2025
CVSS 3.1
EPSS 0.00
CVE-2025-47295
LOW
FortiOS 7.0.0-7.0.14, 7.2.0-7.2.7, 7.4.0-7.4.3 - Unauthenticated Denial of Service via FGFM Daemon Buffer Over-Read
May 28, 2025
CVSS 3.7
EPSS 0.00
CVE-2025-47294
MEDIUM
FortiOS 7.0.0-7.0.14 and 7.2.0-7.2.7 - Unauthenticated Denial of Service via Integer Overflow in csfd Daemon
May 28, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-46777
LOW
Fortinet FortiPortal <7.4.0 - Info Disclosure
May 28, 2025
CVSS 2.3
EPSS 0.00
CVE-2025-25251
HIGH
FortiClient Mac <7.4.2-7.2.8-7.0.14 - Privilege Escalation
May 28, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-24473
LOW
Fortinet FortiClient <7.2.1 - Info Disclosure
May 28, 2025
CVSS 3.7
EPSS 0.00
CVE-2025-22252
CRITICAL
FortiProxy 7.6.0-7.6.1, FortiSwitchManager 7.2.5, FortiOS 7.4.4-7.4.6, 7.6.0 - Authentication Bypass
May 28, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-32756
CRITICAL
KEV
Fortinet Fortimail < 7.0.9 - Out-of-Bounds Write
May 13, 2025
CVSS 9.8
EPSS 0.42
CVE-2025-22859
MEDIUM
FortiClientEMS 7.4.0-7.4.1 & Cloud - Unauthenticated Path Traversal & Arbitrary File Write
May 13, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-25254
HIGH
FortiWeb 7.0.0-7.4.6, 7.6.2 and below - Authenticated Path Traversal and Arbitrary File Write
Apr 08, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-22855
LOW
FortiClientEMS 7.2.1-7.2.9 - Stored Cross-Site Scripting via Administrator Message
Apr 08, 2025
CVSS 2.7
EPSS 0.00
CVE-2025-24472
HIGH
KEV
FortiProxy 7.0.0-7.0.19 and FortiOS 7.0.0-7.0.16 - Unauthenticated Authentication Bypass via CSF Proxy Requests
Feb 11, 2025
CVSS 8.1
EPSS 0.10
CVE-2025-24470
HIGH
FortiPortal <7.4.2-7.0.11 - Path Traversal
Feb 11, 2025
CVSS 8.6
EPSS 0.01
CVE-2024-23104
MEDIUM
FortiVoice 7.0.0-7.0.1 - Info Disclosure
Apr 14, 2026
CVSS 5.4
EPSS 0.00
CVE-2024-40593
MEDIUM
Fortinet FortiAnalyzer/FortManager/FortiOS <7.4.2/<7.2.5/<7.0 - Inf...
Dec 11, 2025
CVSS 6.0
EPSS 0.00
CVE-2024-47570
MEDIUM
FortiOS <7.4.3, <7.2.7, <=7.0 - Info Disclosure
Dec 09, 2025
CVSS 6.6
EPSS 0.00
CVE-2024-50571
HIGH
Fortinet FortiAnalyzer, FortiManager, FortiOS, FortiProxy - Heap-based Buffer Overflow
Oct 14, 2025
CVSS 7.2
EPSS 0.00
CVE-2024-48891
HIGH
FortiSOAR 7.3.0-7.6.1 - Authenticated Local Privilege Escalation via OS Command Injection
Oct 14, 2025
CVSS 7.0
EPSS 0.00
CVE-2024-47569
MEDIUM
Fortinet FortiMail <7.4.3 - Info Disclosure
Oct 14, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-33507
HIGH
FortiIsolator 2.0-2.4.4 - Insufficient Session Expiration and Incorrect Authorization via Crafted Cookie
Oct 14, 2025
CVSS 7.4
EPSS 0.00
Products
fortios 267
fortiweb 124
fortiproxy 117
fortimanager 112
fortianalyzer 92
forticlient 85
fortisandbox 58
fortimail 46
fortiportal 44
fortiadc 43
fortisoar 31
fortinac 30
fortisiem 29
fortimanager_cloud 27
fortipam 25
fortivoice 24
fortiauthenticator 23
fortiwlm 23
fortiswitchmanager 19
fortinet_antivirus 18
fortianalyzer_cloud 17
fortitester 16
fortiwan 16
fortimanager_firmware 15
fortiswitch 14
fortiwlc 14
FortiOS 13
fortianalyzer_big_data 13
forticlientems 13
fortianalyzer_firmware 12
Quick Filters