fortiap · threatengine.sh

CVE-2025-53870

>= 7.2.0 and < 7.2.6

An improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiAP 7.

6.7MEDIUM

CVE-2025-53680

>= 7.0.0 and < 7.0.6

An improper neutralization of special elements used in an OS command ("OS Command Injection") vulnerability [CWE-78] vulnerability

6.7MEDIUM

CVE-2024-26012

>= 6.2.0 and < 6.4.10

A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiAP-S 6.2 all verison

6.7MEDIUM

CVE-2023-36634

>= 5.4.0 and <= 5.4.6

An incomplete filtering of one or more instances of special elements vulnerability [CWE-792] in the command line interpreter of Fo

7.1HIGH

CVE-2023-25608

>= 5.2.0 and < 5.4.5

An incomplete filtering of one or more instances of special elements vulnerability [CWE-792] in the command line interpreter of Fo

5.5MEDIUM

CVE-2022-29058

>= 6.0.0 and <= 6.0.6

An improper neutralization of special elements [CWE-89] used in an OS command vulnerability [CWE-78] in the command line interpret

7.8HIGH

CVE-2022-30301

>= 6.0.0 and <= 6.0.4

A path traversal vulnerability [CWE-22] in FortiAP-U CLI 6.2.0 through 6.2.3, 6.0.0 through 6.0.4, 5.4.0 through 5.4.6 may allow a

7.8HIGH

CVE-2022-22301

all versions

An improper neutralization of special elements used in an OS Command vulnerability [CWE-78] in FortiAP-C console 5.4.0 through 5.4

7.8HIGH

CVE-2021-26106

>= 6.2.4 and < 6.2.6

An improper neutralization of special elements used in an OS Command vulnerability in FortiAP's console 6.4.1 through 6.4.5 and 6.

7.8HIGH

CVE-2019-17657

< 6.2.2

An Uncontrolled Resource Consumption vulnerability in Fortinet FortiSwitch below 3.6.11, 6.0.6 and 6.2.2, FortiAnalyzer below 6.2.

7.5HIGH

CVE-2019-15708

<= 6.0.5

A system command injection vulnerability in the FortiAP-S/W2 6.2.1, 6.2.0, 6.0.5 and below, FortiAP 6.0.5 and below and FortiAP-U

6.7MEDIUM

fortinet fortiap