threat
engine
.sh
Back
·
··:··
Home
/
Product
/
fortinet fortios
Product
fortinet fortios
267 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-53844
>= 7.2.0 and < 7.2.12
A out-of-bounds write vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.
8.8
HIGH
CVE-2025-61624
>= 6.4.0 and < 7.4.10
An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') [CWE-22] vulnerability in Fortinet FortiOS 7.6.0
6.0
MEDIUM
CVE-2025-53847
>= 6.2.9 and < 7.0.18
A missing authentication for critical function vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8,
6.5
MEDIUM
CVE-2026-22153
>= 7.6.0 and < 7.6.5
An Authentication Bypass by Primary Weakness vulnerability [CWE-305] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4 may all
8.1
HIGH
CVE-2025-68686
>= 6.4.0 and < 7.4.7
An Exposure of Sensitive Information to an Unauthorized Actor vulnerability [CWE-200] vulnerability in Fortinet FortiOS 7.6.0 thro
5.9
MEDIUM
CVE-2025-64157
>= 7.0.0 and < 7.4.10
A use of externally-controlled format string vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4, FortiOS 7.4.0 through 7.4.9, F
6.7
MEDIUM
CVE-2025-55018
>= 6.4.3 and <= 6.4.16
An inconsistent interpretation of http requests ('http request smuggling') vulnerability in Fortinet FortiOS 7.6.0, FortiOS 7.4.0
5.8
MEDIUM
CVE-2026-24858
>= 7.0.0 and <= 7.0.18
An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] vulnerability in Fortinet FortiAnalyzer 7.6.0
9.8
CRITICAL
CVE-2025-25249
>= 6.4.0 and < 6.4.17
A heap-based buffer overflow vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 thr
8.1
HIGH
CVE-2024-40593
all versions
A key management errors vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.2, FortiAnalyzer 7.2.0 through 7.2.5, FortiAnaly
6.0
MEDIUM
CVE-2025-62631
>= 6.4.0 and < 7.4.1
An insufficient session expiration vulnerability [CWE-613] vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2 all versions, Fort
5.6
MEDIUM
CVE-2025-59718
>= 7.0.0 and < 7.0.18
A improper verification of cryptographic signature vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.
9.8
CRITICAL
CVE-2024-47570
>= 7.0.4 and <= 7.0.17
An insertion of sensitive information into log file vulnerability [CWE-532] in FortiOS 7.4.0 through 7.4.3, 7.2.0 through 7.2.7, 7
6.6
MEDIUM
CVE-2025-58413
>= 6.0.0 and < 7.4.9
A stack-based buffer overflow vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2 all
7.5
HIGH
CVE-2025-54821
>= 6.4.0 and < 7.6.4
An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4 all ve
1.9
LOW
CVE-2025-53843
>= 6.4.0 and < 7.4.9
A stack-based buffer overflow vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2 all
7.5
HIGH
CVE-2025-58903
>= 6.4.0 and < 7.4.9
An Unchecked Return Value vulnerability [CWE-252] in Fortinet FortiOS version 7.6.0 through 7.6.3 and before 7.4.8 API allows an a
2.7
LOW
CVE-2025-58325
>= 6.4.0 and < 7.0.16
An Incorrect Provision of Specified Functionality vulnerability [CWE-684] in FortiOS 7.6.0, 7.4.0 through 7.4.5, 7.2.5 through 7.2
8.2
HIGH
CVE-2025-57740
>= 6.4.0 and < 7.2.11
An Heap-based Buffer Overflow vulnerability [CWE-122] in FortiOS version 7.6.2 and below, version 7.4.7 and below, version 7.2.10
7.5
HIGH
CVE-2025-54822
>= 7.0.0 and < 7.2.9
An improper authorization vulnerability [CWE-285] vulnerability in Fortinet FortiOS 7.4.0 through 7.4.1, FortiOS 7.2.0 through 7.2
4.3
MEDIUM
CVE-2025-47890
>= 6.4.0 and < 7.4.9
An URL Redirection to Untrusted Site vulnerabilities [CWE-601] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.
2.6
LOW
CVE-2025-31514
>= 6.4.0 and < 7.6.4
An Insertion of Sensitive Information into Log File vulnerability [CWE-532] in FortiOS 7.6.0 through 7.6.3, 7.4 all versions, 7.2
2.7
LOW
CVE-2025-31366
>= 6.4.0 and < 7.4.9
An Improper Neutralization of Input During Web Page Generation vulnerability [CWE-79] vulnerability in Fortinet FortiOS 7.6.0 thro
4.7
MEDIUM
CVE-2025-25255
>= 7.6.0 and < 7.6.4
An Improperly Implemented Security Check for Standard vulnerability [CWE-358] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.
5.3
MEDIUM
CVE-2025-25253
>= 7.0.0 and < 7.4.9
An Improper Validation of Certificate with Host Mismatch vulnerability [CWE-297] in FortiProxy version 7.6.1 and below, version 7.
7.5
HIGH
CVE-2025-25252
>= 6.4.0 and < 7.0.17
An Insufficient Session Expiration vulnerability [CWE-613] in FortiOS SSL VPN 7.6.0 through 7.6.2, 7.4.0 through 7.4.6, 7.2.0 thro
4.8
MEDIUM
CVE-2025-22258
>= 7.0.2 and < 7.0.17
A heap-based buffer overflow in Fortinet FortiSRA 1.5.0, 1.4.0 through 1.4.2, FortiPAM 1.5.0, 1.4.0 through 1.4.2, 1.3.0 through 1
6.5
MEDIUM
CVE-2024-50571
>= 6.2.0 and < 6.4.16
A heap-based buffer overflow vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.2, FortiAnalyzer 7.4.0 through 7.4.5, Forti
7.2
HIGH
CVE-2024-47569
>= 6.0.0 and < 6.4.16
A insertion of sensitive information into sent data vulnerability in Fortinet FortiMail 7.4.0 through 7.4.2, FortiMail 7.2.0 throu
4.3
MEDIUM
CVE-2024-26008
>= 6.2.0 and < 7.2.8
An improper check or handling of exceptional conditions vulnerability [CWE-703] in FortiOS version 7.4.0 through 7.4.3 and before
5.3
MEDIUM
CVE-2023-46718
>= 6.0.13 and <= 6.0.18
A stack-based buffer overflow in Fortinet FortiOS version 7.4.0 through 7.4.1 and 7.2.0 through 7.2.7 and 7.0.0 through 7.0.12 and
6.7
MEDIUM
CVE-2025-22862
>= 7.0.6 and < 7.2.12
An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] in FortiOS 7.4.0 through 7.4.7, 7.2.0 through
6.7
MEDIUM
CVE-2025-53744
>= 6.4.0 and < 7.4.8
An incorrect privilege assignment vulnerability [CWE-266] in FortiOS Security Fabric version 7.6.0 through 7.6.2, 7.4.0 through 7.
7.2
HIGH
CVE-2025-25248
>= 6.4.0 and < 7.2.11
An Integer Overflow or Wraparound vulnerability [CWE-190] in FortiOS version 7.6.2 and below, version 7.4.7 and below, version 7.
5.3
MEDIUM
CVE-2024-26009
>= 6.0.0 and < 6.2.17
An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet FortiOS 6.4.0 through 6.4.15, Fort
8.1
HIGH
CVE-2023-45584
>= 6.4.0 and < 7.0.13
A double free vulnerability [CWE-415] vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0.0 through
6.6
MEDIUM
CVE-2025-24477
>= 7.2.4 and < 7.2.12
A heap-based buffer overflow vulnerability in Fortinet FortiOS 7.6.0 through 7.6.2, FortiOS 7.4.0 through 7.4.7, FortiOS 7.2.4 thr
4.2
MEDIUM
CVE-2024-55599
>= 6.4.0 and < 7.2.11
An Improperly Implemented Security Check for Standard vulnerability [CWE-358] in FortiOS version 7.6.0, version 7.4.7 and below, 7
5.3
MEDIUM
CVE-2024-52965
>= 7.0.1 and < 7.0.17
A missing critical step in authentication vulnerability [CWE-304] in Fortinet FortiOS version 7.6.0 through 7.6.1, 7.4.0 through 7
7.2
HIGH
CVE-2025-25250
>= 6.4.0 and < 7.4.8
An Exposure of Sensitive Information to an Unauthorized Actor vulnerability [CWE-200] in FortiOS version 7.6.0, version 7.4.7 and
4.3
MEDIUM
CVE-2025-24471
>= 7.4.0 and < 7.4.8
An Improper Certificate Validation vulnerability [CWE-295] in FortiOS version 7.6.1 and below, version 7.4.7 and below may allow
6.5
MEDIUM
CVE-2025-22254
>= 6.4.0 and < 6.4.16
An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.1, FortiOS 7.4.0 thro
6.6
MEDIUM
CVE-2025-22251
>= 6.4.0 and < 7.4.6
An improper restriction of communication channel to intended endpoints vulnerability [CWE-923] in FortiOS 7.6.0, 7.4.0 through 7.4
3.1
LOW
CVE-2024-50568
>= 6.4.2 and < 7.2.9
A channel accessible by non-endpoint vulnerability [CWE-300] in Fortinet FortiOS version 7.4.0 through 7.4.3, 7.2.0 through 7.2.7
5.9
MEDIUM
CVE-2024-50562
>= 6.4.0 and < 7.2.11
An Insufficient Session Expiration vulnerability [CWE-613] in FortiOS SSL-VPN version 7.6.0, version 7.4.6 and below, version 7.2.
4.8
MEDIUM
CVE-2023-29184
>= 6.2.0 and <= 7.2.11
An incomplete cleanup vulnerability [CWE-459] in FortiOS 7.2 all versions and before & FortiProxy version 7.2.0 through 7.2.2 and
3.2
LOW
CVE-2025-47295
>= 6.4.0 and < 7.0.15
A buffer over-read in Fortinet FortiOS versions 7.4.0 through 7.4.3, versions 7.2.0 through 7.2.7, and versions 7.0.0 through 7.0.
3.7
LOW
CVE-2025-47294
>= 6.4.0 and < 7.0.15
A integer overflow or wraparound in Fortinet FortiOS versions 7.2.0 through 7.2.7, versions 7.0.0 through 7.0.14 may allow a remot
5.3
MEDIUM
CVE-2025-22252
>= 7.4.4 and < 7.4.7
A missing authentication for critical function in Fortinet FortiProxy versions 7.6.0 through 7.6.1, FortiSwitchManager version 7.2
9.8
CRITICAL
CVE-2024-50565
>= 6.4.0 and < 7.0.16
A improper restriction of communication channel to intended endpoints vulnerability [CWE-923] in Fortinet FortiOS version 7.4.0 th
3.1
LOW
CVE-2024-32122
>= 6.4.0 and <= 6.4.16
A storing passwords in a recoverable format in Fortinet FortiOS 7.4.0 through 7.4.8, FortiOS 7.2 all versions, FortiOS 7.0 all ver
2.3
LOW
CVE-2024-26013
>= 6.4.0 and < 7.0.16
A improper restriction of communication channel to intended endpoints vulnerability [CWE-923] in Fortinet FortiOS version 7.4.0 th
7.5
HIGH
CVE-2023-37930
>= 6.4.7 and < 6.4.15
Multiple issues including the use of uninitialized ressources [CWE-908] and excessive iteration [CWE-834] vulnerabilities vulnerab
7.5
HIGH
CVE-2023-25610
>= 5.0.0 and < 6.2.13
A buffer underwrite ('buffer underflow') vulnerability in the administrative interface of Fortinet FortiOS version 7.2.0 through 7
9.8
CRITICAL
CVE-2019-16151
>= 6.2.0 and < 6.2.10
An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiOS 6.4.1 and below, 6.2.9 and below
4.7
MEDIUM
CVE-2020-29010
>= 6.0.0 and < 6.0.11
An exposure of sensitive information to an unauthorized actor vulnerability in FortiOS version 6.2.4 and below, version 6.0.10 and
5.0
MEDIUM
CVE-2019-6697
>= 6.0.0 and < 6.0.7
An Improper Neutralization of Input vulnerability affecting FortiGate version 6.2.0 through 6.2.1, 6.0.0 through 6.0.6 in the host
5.3
MEDIUM
CVE-2019-15706
>= 5.6.0 and < 5.6.13
An improper neutralization of input during web page generation in the SSL VPN portal of FortiProxy version 2.0.0, version 1.2.9 an
4.1
MEDIUM
CVE-2024-26006
>= 6.4.0 and < 7.0.14
An improper neutralization of input during web page Generation vulnerability [CWE-79] in FortiOS version 7.4.3 and below, version
7.5
HIGH
CVE-2024-45324
>= 6.2.0 and < 6.2.17
A use of externally-controlled format string vulnerability [CWE-134] in FortiOS version 7.4.0 through 7.4.4, version 7.2.0 through
7.2
HIGH
CVE-2025-24472
>= 7.0.0 and < 7.0.17
An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting FortiOS 7.0.0 through 7.0.16 and Fo
8.1
HIGH
CVE-2024-40591
>= 6.4.0 and < 6.4.16
An incorrect privilege assignment vulnerability [CWE-266] in Fortinet FortiOS version 7.6.0, 7.4.0 through 7.4.4, 7.2.0 through 7.
8.8
HIGH
CVE-2024-35279
>= 7.2.4 and < 7.2.9
A stack-based buffer overflow [CWE-121] vulnerability in Fortinet FortiOS version 7.2.4 through 7.2.8 and version 7.4.0 through 7.
8.1
HIGH
CVE-2023-40721
>= 6.2.0 and < 7.0.14
A use of externally-controlled format string vulnerability [CWE-134] vulnerability in Fortinet allows a privileged attacker to ex
6.7
MEDIUM
CVE-2022-23439
>= 6.0.0 and < 7.0.6
A externally controlled reference to a resource in another sphere vulnerability in Fortinet allows attacker to poison web caches
4.7
MEDIUM
CVE-2024-55591
>= 7.0.0 and < 7.0.17
An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting FortiOS version 7.0.0 through 7.0.1
9.8
CRITICAL
CVE-2024-54021
>= 7.2.0 and < 7.2.9
An Improper Neutralization of CRLF Sequences in HTTP Headers ('http response splitting') vulnerability [CWE-113] in Fortinet Forti
6.5
MEDIUM
CVE-2024-52963
>= 6.4.0 and < 7.2.11
A out-of-bounds write in Fortinet FortiOS versions 7.6.0, 7.4.0 through 7.4.6, 7.2.0 through 7.2.10, 7.0.0 through 7.0.16, 6.4.0 t
3.7
LOW
CVE-2024-48886
>= 6.4.0 and < 7.0.16
A weak authentication in Fortinet FortiOS versions 7.4.0 through 7.4.4, 7.2.0 through 7.2.8, 7.0.0 through 7.0.15, 6.4.0 through 6
9.0
CRITICAL
CVE-2024-48884
>= 6.4.0 and < 6.4.16
A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet FortiManager 7.6.0 thro
7.5
HIGH
CVE-2024-46670
>= 7.2.0 and < 7.2.10
An Out-of-bounds Read vulnerability [CWE-125] in FortiOS version 7.6.0, version 7.4.4 and below, version 7.2.9 and below and Fort
7.5
HIGH
CVE-2024-46669
>= 7.2.0 and < 7.4.5
An Integer Overflow or Wraparound vulnerability [CWE-190] in version 7.4.4 and below, version 7.2.10 and below; FortiSASE version
3.5
LOW
CVE-2024-46668
>= 6.4.0 and < 6.4.16
An allocation of resources without limits or throttling vulnerability [CWE-770] in FortiOS versions 7.4.0 through 7.4.4, versions
7.5
HIGH
CVE-2024-46666
>= 6.4.0 and < 7.2.9
An allocation of resources without limits or throttling [CWE-770] vulnerability in FortiOS versions 7.6.0, versions 7.4.4 through
5.3
MEDIUM
CVE-2024-46665
>= 7.4.0 and < 7.4.5
An insertion of sensitive information into sent data vulnerability [CWE-201] in FortiOS 7.6.0, 7.4.0 through 7.4.4 may allow an at
3.7
LOW
CVE-2024-36504
>= 6.4.0 and < 7.2.9
An out-of-bounds read vulnerability [CWE-125] in FortiOS SSLVPN web portal versions 7.4.0 through 7.4.4, versions 7.2.0 through 7.
6.5
MEDIUM
CVE-2023-46715
>= 6.2.0 and < 7.4.2
An origin validation error [CWE-346] vulnerability in Fortinet FortiOS IPSec VPN version 7.4.0 through 7.4.1 and version 7.2.6 an
5.0
MEDIUM
CVE-2023-42786
>= 6.0.0 and < 7.2.6
A null pointer dereference in FortiOS versions 7.4.0 through 7.4.1, 7.2.0 through 7.2.5, 7.0 all versions, 6.4 all versions , 6.2
6.5
MEDIUM
CVE-2023-42785
>= 6.0.0 and < 7.2.6
A null pointer dereference in FortiOS versions 7.4.0 through 7.4.1, 7.2.0 through 7.2.5, 7.0 all versions, 6.4 all versions , 6.2
6.5
MEDIUM
CVE-2020-12820
< 5.6.13
Under non-default configuration, a stack-based buffer overflow in FortiOS version 6.0.10 and below, version 5.6.12 and below may a
5.4
MEDIUM
CVE-2020-12819
< 5.6.13
A heap-based buffer overflow vulnerability in the processing of Link Control Protocol messages in FortiGate versions 5.6.12, 6.0.1
5.4
MEDIUM
CVE-2024-33510
>= 7.0.0 and < 7.2.9
An improper neutralization of special elements in output used by a downstream component ('Injection') vulnerability [CWE-74] in F
4.3
MEDIUM
CVE-2024-26011
>= 6.0.0 and < 7.0.15
A missing authentication for critical function in Fortinet FortiManager version 7.4.0 through 7.4.2, 7.2.0 through 7.2.4, 7.0.0 th
5.3
MEDIUM
CVE-2023-50176
>= 7.0.0 and < 7.0.14
A session fixation in Fortinet FortiOS version 7.4.0 through 7.4.3 and 7.2.0 through 7.2.7 and 7.0.0 through 7.0.13 allows attacke
7.5
HIGH
CVE-2024-36505
>= 6.4.13 and <= 6.4.15
An improper access control vulnerability [CWE-284] in FortiOS 7.4.0 through 7.4.3, 7.2.5 through 7.2.7, 7.0.12 through 7.0.14 and
5.1
MEDIUM
CVE-2022-45862
>= 6.4.0 and < 7.2.6
An insufficient session expiration vulnerability [CWE-613] vulnerability in FortiOS 7.2.5 and below, 7.0 all versions, 6.4 all ver
3.7
LOW
CVE-2024-26015
>= 7.0.0 and <= 7.0.15
An incorrect parsing of numbers with different radices vulnerability [CWE-1389] in FortiProxy version 7.4.3 and below, version 7.2
3.4
LOW
CVE-2024-26010
>= 6.0.0 and < 7.0.15
A stack-based buffer overflow in Fortinet FortiPAM version 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiWeb, FortiAuthent
7.5
HIGH
CVE-2024-23111
>= 7.0.0 and < 7.0.14
An improper neutralization of input during web page Generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiOS version
6.8
MEDIUM
CVE-2024-23110
>= 6.0.0 and < 6.2.16
A stack-based buffer overflow in Fortinet FortiOS version 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, 6.4.0 th
7.8
HIGH
CVE-2024-21754
>= 6.4.0 and <= 6.4.15
A use of password hash with insufficient computational effort vulnerability [CWE-916] affecting FortiOS version 7.4.3 and below, 7
1.8
LOW
CVE-2023-46720
>= 6.0.13 and <= 6.0.18
A stack-based buffer overflow in Fortinet FortiOS version 7.4.0 through 7.4.1 and 7.2.0 through 7.2.7 and 7.0.0 through 7.0.12 and
6.7
MEDIUM
CVE-2024-26007
all versions
An improper check or handling of exceptional conditions vulnerability [CWE-703] in Fortinet FortiOS version 7.4.1 allows an unauth
5.3
MEDIUM
CVE-2023-46714
>= 7.2.1 and <= 7.2.6
A stack-based buffer overflow [CWE-121] vulnerability in Fortinet FortiOS version 7.2.1 through 7.2.6 and version 7.4.0 through 7.
7.2
HIGH
CVE-2023-45586
>= 6.2.0 and <= 6.2.16
An insufficient verification of data authenticity vulnerability [CWE-345] in Fortinet FortiOS SSL-VPN tunnel mode version 7.4.0 th
5.0
MEDIUM
CVE-2023-45583
< 7.2.6
A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.5, 7.0.0 through 7.0.11, 2.0.0 thro
6.7
MEDIUM
CVE-2023-44247
>= 6.2.0 and <= 6.2.16
A double free vulnerability [CWE-415] vulnerability in Fortinet FortiOS 6.4 all versions may allow a privileged attacker to execut
6.6
MEDIUM
CVE-2023-36640
>= 6.0.0 and <= 6.0.16
A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4, 7.0.0 through 7.0.10, 2.0.0 thro
6.7
MEDIUM
CVE-2024-23662
>= 6.4.0 and < 7.2.6
An exposure of sensitive information to an unauthorized actor in Fortinet FortiOS at least version at least 7.4.0 through 7.4.1 an
5.3
MEDIUM
CVE-2023-48784
>= 6.4.0 and < 7.0.16
A use of externally-controlled format string vulnerability [CWE-134] in FortiOS version 7.4.1 and below, version 7.2.7 and below,
6.7
MEDIUM
CVE-2023-41677
>= 6.0.0 and < 6.2.16
A insufficiently protected credentials in Fortinet FortiProxy 7.4.0, 7.2.0 through 7.2.6, 7.0.0 through 7.0.12, 2.0.0 through 2.0.
7.5
HIGH
CVE-2024-23112
>= 6.4.7 and <= 6.4.14
An authorization bypass through user-controlled key vulnerability [CWE-639] in FortiOS version 7.4.0 through 7.4.1, 7.2.0 through
8.0
HIGH
CVE-2023-46717
>= 7.0.0 and < 7.0.13
An improper authentication vulnerability [CWE-287] in FortiOS versions 7.4.1 and below, versions 7.2.6 and below, and versions 7.0
7.5
HIGH
CVE-2023-42790
>= 6.2.0 and <= 6.2.15
A stack-based buffer overflow in Fortinet FortiOS 7.4.0 through 7.4.1, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.
8.1
HIGH
CVE-2023-42789
>= 6.2.0 and <= 6.2.15
A out-of-bounds write in Fortinet FortiOS 7.4.0 through 7.4.1, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14, 6.
9.8
CRITICAL
CVE-2023-29181
>= 6.0.0 and < 6.2.15
A use of externally-controlled format string in Fortinet FortiOS 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.12,
8.8
HIGH
CVE-2023-29180
>= 6.0.0 and < 6.0.17
A null pointer dereference in Fortinet FortiOS version 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.12, 6.2.0 thro
7.5
HIGH
CVE-2023-29179
>= 6.4.0 and < 6.4.13
A null pointer dereference in Fortinet FortiOS version 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.12, Fortiproxy
6.5
MEDIUM
CVE-2024-23113
>= 7.0.0 and <= 7.0.13
A use of externally-controlled format string in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through
9.8
CRITICAL
CVE-2023-47537
>= 7.0.0 and < 7.0.14
An improper certificate validation vulnerability in Fortinet FortiOS 7.4.0 through 7.4.1, FortiOS 7.2.0 through 7.2.6, FortiOS 7.0
4.8
MEDIUM
CVE-2024-21762
>= 6.0.0 and < 6.0.18
A out-of-bounds write in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, 6.4.0 through 6
9.8
CRITICAL
CVE-2023-44250
all versions
An improper privilege management vulnerability [CWE-269] in a Fortinet FortiOS HA cluster version 7.4.0 through 7.4.1 and 7.2.5 an
8.8
HIGH
CVE-2023-47536
>= 6.4.0 and <= 6.4.14
An improper access control vulnerability [CWE-284] in FortiOS version 7.2.0, version 7.0.13 and below, version 6.4.14 and below an
3.1
LOW
CVE-2023-41678
all versions
A double free in Fortinet FortiOS versions 7.0.0 through 7.0.5, FortiPAM version 1.0.0 through 1.0.3, 1.1.0 through 1.1.1 allows a
8.8
HIGH
CVE-2023-36639
>= 6.0.0 and <= 6.0.17
A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4, 7.0.0 through 7.0.10, FortiOS ve
7.2
HIGH
CVE-2023-36641
>= 6.0.0 and <= 6.0.17
A numeric truncation error in Fortinet FortiProxy version 7.2.0 through 7.2.4, FortiProxy version 7.0.0 through 7.0.10, FortiProxy
6.5
MEDIUM
CVE-2023-28002
>= 6.0.0 and <= 6.0.17
An improper validation of integrity check value vulnerability [CWE-354] in FortiOS 7.2.0 through 7.2.3, 7.0.0 through 7.0.12, 6.4
6.4
MEDIUM
CVE-2023-41841
>= 7.0.0 and <= 7.0.11
An improper authorization vulnerability in Fortinet FortiOS 7.0.0 - 7.0.11 and 7.2.0 - 7.2.4 allows an attacker belonging to the p
8.1
HIGH
CVE-2023-41675
>= 7.0.0 and <= 7.0.10
A use after free vulnerability [CWE-416] in FortiOS version 7.2.0 through 7.2.4 and version 7.0.0 through 7.0.10 and FortiProxy ve
5.3
MEDIUM
CVE-2023-37935
>= 7.0.0 and <= 7.0.12
A use of GET request method with sensitive query strings vulnerability in Fortinet FortiOS 7.0.0 - 7.0.12, 7.2.0 - 7.2.5 and 7.4.0
6.5
MEDIUM
CVE-2023-36555
>= 7.2.0 and <= 7.2.4
An improper neutralization of script-related html tags in a web page (basic xss) in Fortinet FortiOS 7.2.0 - 7.2.4 allows an attac
3.9
LOW
CVE-2023-33301
>= 7.2.0 and <= 7.2.4
An improper access control vulnerability in Fortinet FortiOS 7.2.0 - 7.2.4 and 7.4.0 allows an attacker to access a restricted res
6.5
MEDIUM
CVE-2023-29183
>= 6.2.0 and < 6.2.15
An improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiProxy 7.2.0
8.0
HIGH
CVE-2022-22305
>= 5.6.10 and <= 5.6.14
An improper certificate validation vulnerability [CWE-295] in FortiManager 7.0.1 and below, 6.4.6 and below; FortiAnalyzer 7.0.2
5.4
MEDIUM
CVE-2023-29182
>= 6.2.0 and < 7.0.4
A stack-based buffer overflow vulnerability [CWE-121] in Fortinet FortiOS before 7.0.3 allows a privileged attacker to execute ar
6.4
MEDIUM
CVE-2023-33308
>= 7.0.0 and <= 7.0.10
A stack-based overflow vulnerability [CWE-124] in Fortinet FortiOS version 7.0.0 through 7.0.10 and 7.2.0 through 7.2.3 and FortiP
9.8
CRITICAL
CVE-2021-43072
>= 6.0.0 and < 6.2.11
A buffer copy without checking size of input ('classic buffer overflow') in Fortinet FortiAnalyzer version 7.0.2 and below, versio
6.7
MEDIUM
CVE-2023-28001
>= 7.0.0 and <= 7.0.12
An insufficient session expiration in Fortinet FortiOS 7.0.0 - 7.0.12 and 7.2.0 - 7.2.4 allows an attacker to execute unauthorized
4.1
MEDIUM
CVE-2022-22302
>= 6.0.0 and <= 6.0.13
A clear text storage of sensitive information (CWE-312) vulnerability in both FortiGate version 6.4.0 through 6.4.1, 6.2.0 through
5.3
MEDIUM
CVE-2023-33307
>= 7.0.0 and < 7.0.11
A null pointer dereference in Fortinet FortiOS before 7.2.5 and before 7.0.11, FortiProxy before 7.2.3 and before 7.0.9 allows att
6.5
MEDIUM
CVE-2023-33306
>= 6.4.0 and < 6.4.13
A null pointer dereference in Fortinet FortiOS before 7.2.5, before 7.0.11 and before 6.4.13, FortiProxy before 7.2.4 and before
6.5
MEDIUM
CVE-2023-33305
>= 5.0.0 and <= 5.0.14
A loop with unreachable exit condition ('infinite loop') in Fortinet FortiOS version 7.2.0 through 7.2.4, FortiOS version 7.0.0 th
4.9
MEDIUM
CVE-2023-29178
>= 6.0.0 and <= 6.0.17
A access of uninitialized pointer vulnerability [CWE-824] in Fortinet FortiProxy version 7.2.0 through 7.2.3 and before 7.0.9 and
4.3
MEDIUM
CVE-2023-29175
>= 6.0.0 and <= 6.0.17
An improper certificate validation vulnerability [CWE-295] in FortiOS 6.2 all versions, 6.4 all versions, 7.0.0 through 7.0.10, 7.
4.8
MEDIUM
CVE-2023-27997
>= 6.0.0 and <= 6.0.16
A heap-based buffer overflow vulnerability [CWE-122] in FortiOS version 7.2.4 and below, version 7.0.11 and below, version 6.4.12
9.8
CRITICAL
CVE-2023-26207
>= 7.2.0 and <= 7.2.4
An insertion of sensitive information into log file vulnerability in Fortinet FortiOS 7.2.0 through 7.2.4 and FortiProxy 7.0.0 thr
3.3
LOW
CVE-2023-22639
>= 6.0.0 and <= 6.0.17
A out-of-bounds write in Fortinet FortiOS version 7.2.0 through 7.2.3, FortiOS version 7.0.0 through 7.0.10, FortiOS version 6.4.0
6.7
MEDIUM
CVE-2022-43953
>= 6.2.0 and <= 6.2.15
A use of externally-controlled format string in Fortinet FortiOS version 7.2.0 through 7.2.4, FortiOS all versions 7.0, FortiOS al
6.7
MEDIUM
CVE-2022-42474
>= 6.2.0 and <= 6.2.15
A relative path traversal vulnerability [CWE-23] in Fortinet FortiOS version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.9 and
6.5
MEDIUM
CVE-2022-41327
>= 7.0.0 and <= 7.0.8
A cleartext transmission of sensitive information vulnerability [CWE-319] in Fortinet FortiOS version 7.2.0 through 7.2.4, 7.0.0 t
7.8
HIGH
CVE-2023-22640
>= 6.0.0 and <= 6.0.16
A out-of-bounds write in Fortinet FortiOS version 7.2.0 through 7.2.3, FortiOS version 7.0.0 through 7.0.10, FortiOS version 6.4.0
7.5
HIGH
CVE-2023-22641
>= 6.0.0 and < 6.4.13
A url redirection to untrusted site ('open redirect') in Fortinet FortiOS version 7.2.0 through 7.2.3, FortiOS version 7.0.0 throu
4.1
MEDIUM
CVE-2022-43947
>= 6.2.0 and < 6.4.13
An improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet FortiOS version 7.2.0 through 7.
5.0
MEDIUM
CVE-2022-42469
>= 7.0.0 and < 7.0.11
A permissive list of allowed inputs vulnerability [CWE-183] in FortiGate version 7.2.3 and below, version 7.0.9 and below Policy-b
4.3
MEDIUM
CVE-2022-41330
>= 6.2.0 and < 6.2.13
An improper neutralization of input during web page generation vulnerability ('Cross-site Scripting') [CWE-79] in Fortinet FortiOS
8.8
HIGH
CVE-2022-45861
>= 6.2.0 and <= 6.2.13
An access of uninitialized pointer vulnerability [CWE-824] in the SSL VPN portal of Fortinet FortiOS version 7.2.0 through 7.2.3,
6.5
MEDIUM
CVE-2022-42476
>= 6.2.0 and <= 6.2.12
A relative path traversal vulnerability [CWE-23] in Fortinet FortiOS version 7.2.0 through 7.2.2, 7.0.0 through 7.0.8 and before 6
8.2
HIGH
CVE-2022-41329
>= 6.2.3 and <= 6.2.13
An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in Fortinet FortiProxy version 7.2.0 through
5.3
MEDIUM
CVE-2022-41328
>= 6.0.0 and <= 6.0.16
A improper limitation of a pathname to a restricted directory vulnerability ('path traversal') [CWE-22] in Fortinet FortiOS versio
6.7
MEDIUM
CVE-2022-42472
>= 6.0.1 and <= 6.0.16
A improper neutralization of crlf sequences in http headers ('http response splitting') in Fortinet FortiOS versions 7.2.0 through
4.2
MEDIUM
CVE-2022-41335
>= 6.2.0 and <= 6.2.12
A relative path traversal vulnerability [CWE-23] in Fortinet FortiOS version 7.2.0 through 7.2.2, 7.0.0 through 7.0.8 and before
8.8
HIGH
CVE-2022-41334
>= 7.0.0 and <= 7.0.7
An improper neutralization of input during web page generation [CWE-79] vulnerability in FortiOS versions 7.0.0 to 7.0.7 and 7.2.0
8.8
HIGH
CVE-2022-39948
>= 6.0.0 and < 7.0.8
An improper certificate validation vulnerability [CWE-295] in FortiOS 7.2.0 through 7.2.3, 7.0.0 through 7.0.7, 6.4 all versions,
4.8
MEDIUM
CVE-2022-38378
>= 6.0.0 and < 7.0.8
An improper privilege management vulnerability [CWE-269] in Fortinet FortiOS version 7.2.0 and before 7.0.7 and FortiProxy version
4.2
MEDIUM
CVE-2022-29054
>= 6.0.0 and <= 6.0.16
A missing cryptographic steps vulnerability [CWE-325] in the functions that encrypt the DHCP and DNS keys in Fortinet FortiOS ver
3.3
LOW
CVE-2021-43074
>= 6.0.0 and < 6.4.9
An improper verification of cryptographic signature vulnerability [CWE-347] in FortiWeb 6.4 all versions, 6.3.16 and below, 6.2 al
4.3
MEDIUM
CVE-2022-42475
>= 5.0.0 and <= 5.0.14
A heap-based buffer overflow vulnerability [CWE-122] in FortiOS SSL-VPN 7.2.0 through 7.2.2, 7.0.0 through 7.0.8, 6.4.0 through 6
9.8
CRITICAL
CVE-2022-40680
>= 6.0.7 and <= 6.0.15
A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiOS 6.0.7 - 6.0.15, 6.2.2 -
4.0
MEDIUM
CVE-2022-35843
>= 6.0.0 and <= 6.0.15
An authentication bypass by assumed-immutable data vulnerability [CWE-302] in the FortiOS SSH login component 7.2.0, 7.0.0 throug
8.1
HIGH
CVE-2022-38380
>= 7.0.0 and <= 7.0.7
An improper access control [CWE-284] vulnerability in FortiOS version 7.2.0 and versions 7.0.0 through 7.0.7 may allow a remote au
4.3
MEDIUM
CVE-2022-35842
>= 6.4.0 and <= 6.4.9
An exposure of sensitive information to an unauthorized actor vulnerabiltiy [CWE-200] in FortiOS SSL-VPN versions 7.2.0, versions
3.7
LOW
CVE-2022-30307
>= 6.4.0 and < 6.4.10
A key management error vulnerability [CWE-320] affecting the RSA SSH host key in FortiOS 7.2.0 and below, 7.0.6 and below, 6.4.9 a
3.9
LOW
CVE-2022-26122
>= 6.0.0 and <= 6.0.15
An insufficient verification of data authenticity vulnerability [CWE-345] in FortiClient, FortiMail and FortiOS AV engines version
4.7
MEDIUM
CVE-2022-29055
>= 6.2.0 and < 6.2.11
A access of uninitialized pointer in Fortinet FortiOS version 7.2.0, 7.0.0 through 7.0.5, 6.4.0 through 6.4.8, 6.2.0 through 6.2.1
7.5
HIGH
CVE-2022-40684
>= 7.0.0 and < 7.0.7
An authentication bypass using an alternate path or channel [CWE-288] in Fortinet FortiOS version 7.2.0 through 7.2.1 and 7.0.0 th
9.8
CRITICAL
CVE-2021-44171
>= 6.0.0 and <= 6.0.14
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiOS version 6.0.0 thr
9.0
CRITICAL
CVE-2022-29053
>= 6.0.0 and <= 6.0.14
A missing cryptographic steps vulnerability [CWE-325] in the functions that encrypt the keytab files in FortiOS version 7.2.0, 7.0
2.3
LOW
CVE-2022-27491
>= 6.0.0 and <= 6.0.14
A improper verification of source of a communication channel in Fortinet FortiOS with IPS engine version 7.201 through 7.214, 7.00
6.8
MEDIUM
CVE-2021-43080
>= 6.4.0 and < 6.4.10
An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiOS version 7.2.0, version 6.4.0 thro
4.6
MEDIUM
CVE-2022-22299
>= 5.0.0 and <= 5.0.14
A format string vulnerability [CWE-134] in the command line interpreter of FortiADC version 6.0.0 through 6.0.4, FortiADC version
7.8
HIGH
CVE-2022-23442
>= 6.2.0 and <= 6.2.11
An improper access control vulnerability [CWE-284] in FortiOS versions 6.2.0 through 6.2.11, 6.4.0 through 6.4.8 and 7.0.0 through
4.3
MEDIUM
CVE-2022-23438
<= 6.4.9
An improper neutralization of input during web page generation ('Cross-site Scripting') [CWE-79] vulnerability in FortiOS version
4.7
MEDIUM
CVE-2021-44170
>= 6.0.0 and <= 6.0.14
A stack-based buffer overflow vulnerability [CWE-121] in the command line interpreter of FortiOS before 7.0.4 and FortiProxy befor
6.7
MEDIUM
CVE-2021-42755
all versions
An integer overflow / wraparound vulnerability [CWE-190] in FortiSwitch 7.0.2 and below, 6.4.9 and below, 6.2.x, 6.0.x; FortiRecor
4.3
MEDIUM
CVE-2022-22306
>= 6.0.0 and <= 6.0.14
An improper certificate validation vulnerability [CWE-295] in FortiOS 6.0.0 through 6.0.14, 6.2.0 through 6.2.10, 6.4.0 through 6.
5.4
MEDIUM
CVE-2021-43081
>= 6.0.0 and <= 6.0.14
An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiOS version 7.0.3 and below, 6.4.8 an
6.1
MEDIUM
CVE-2021-43206
>= 5.6.0 and < 6.0.14
A server-generated error message containing sensitive information in Fortinet FortiOS 7.0.0 through 7.0.3, 6.4.0 through 6.4.8, 6.
4.3
MEDIUM
CVE-2021-41032
>= 6.2.0 and < 6.4.9
An improper access control vulnerability [CWE-284] in FortiOS versions 6.4.8 and prior and 7.0.3 and prior may allow an authentica
6.3
MEDIUM
CVE-2020-15936
>= 5.6.0 and <= 5.6.13
A improper input validation in Fortinet FortiGate version 6.4.3 and below, version 6.2.5 and below, version 6.0.11 and below, vers
2.6
LOW
CVE-2021-26092
>= 5.2.10 and <= 5.2.15
Failure to sanitize input in the SSL VPN web portal of FortiOS 5.2.10 through 5.2.15, 5.4.0 through 5.4.13, 5.6.0 through 5.6.14,
4.7
MEDIUM
CVE-2021-44168
< 6.0.14
A download of code without integrity check vulnerability in the "execute restore src-vis" command of FortiOS before 7.0.3 may allo
3.3
LOW
CVE-2021-36169
>= 5.6.0 and <= 5.6.14
A Hidden Functionality in Fortinet FortiOS 7.x before 7.0.1, FortiOS 6.4.x before 6.4.7 allows attacker to Execute unauthorized co
4.2
MEDIUM
CVE-2021-36173
>= 6.0.0 and <= 6.0.13
A heap-based buffer overflow in the firmware signature verification function of FortiOS versions 7.0.1, 7.0.0, 6.4.0 through 6.4.6
8.0
HIGH
CVE-2021-41024
all versions
A relative path traversal [CWE-23] vulnerabiltiy in FortiOS versions 7.0.0 and 7.0.1 and FortiProxy verison 7.0.0 may allow an una
7.5
HIGH
CVE-2021-26109
>= 6.0.0 and <= 6.0.12
An integer overflow or wraparound vulnerability in the memory allocator of SSLVPN in FortiOS before 7.0.1 may allow an unauthentic
8.1
HIGH
CVE-2021-26108
>= 5.6.0 and <= 5.6.13
A use of hard-coded cryptographic key vulnerability in the SSLVPN of FortiOS before 7.0.1 may allow an attacker to retrieve the ke
7.5
HIGH
CVE-2021-26103
>= 5.6.0 and <= 5.6.14
An insufficient verification of data authenticity vulnerability (CWE-345) in the user interface of FortiProxy verison 2.0.3 and be
6.3
MEDIUM
CVE-2021-42757
>= 5.0.0 and <= 6.0.13
A buffer overflow [CWE-121] in the TFTP client library of FortiOS before 6.4.7 and FortiOS 7.0.0 through 7.0.2, may allow an authe
6.7
MEDIUM
CVE-2021-26110
>= 5.6.0 and <= 5.6.14
An improper access control vulnerability [CWE-284] in FortiOS autod daemon 7.0.0, 6.4.6 and below, 6.2.9 and below, 6.0.12 and bel
7.8
HIGH
CVE-2021-32600
>= 5.6.0 and <= 5.6.9
An exposure of sensitive information to an unauthorized actor vulnerability in FortiOS CLI 7.0.0, 6.4.0 through 6.4.6, 6.2.0 throu
5.0
MEDIUM
CVE-2021-41019
>= 6.4.0 and <= 6.4.6
An improper validation of certificate with host mismatch [CWE-297] vulnerability in FortiOS versions 6.4.6 and below may allow the
3.5
LOW
CVE-2021-24018
< 6.2.10
A buffer underwrite vulnerability in the firmware verification routine of FortiOS before 7.0.1 may allow an attacker located in th
4.3
MEDIUM
CVE-2021-24012
>= 6.4.0 and < 6.4.5
An improper following of a certificate's chain of trust vulnerability in FortiGate versions 6.4.0 to 6.4.4 may allow an LDAP user
6.5
MEDIUM
CVE-2019-17656
<= 6.0.10
A Stack-based Buffer Overflow vulnerability in the HTTPD daemon of FortiOS 6.0.10 and below, 6.2.2 and below and FortiProxy 1.0.x,
5.4
MEDIUM
CVE-2020-15938
<= 6.2.5
When traffic other than HTTP/S (eg: SSH traffic, etc...) traverses the FortiGate in version below 6.2.5 and below 6.4.2 on port 80
4.0
MEDIUM
CVE-2020-15937
>= 6.2.0 and < 6.2.5
An improper neutralization of input vulnerability in FortiGate version 6.2.x below 6.2.5 and 6.4.x below 6.4.1 may allow a remote
4.7
MEDIUM
CVE-2020-6648
< 6.0.12
A cleartext storage of sensitive information vulnerability in FortiOS command line interface in versions 6.2.4 and earlier and For
5.3
MEDIUM
CVE-2020-12818
< 6.4.1
An insufficient logging vulnerability in FortiGate before 6.4.1 may allow the traffic from an unauthenticated attacker to Fortinet
5.3
MEDIUM
CVE-2019-5591
<= 6.2.0
A Default Configuration vulnerability in FortiOS may allow an unauthenticated attacker on the same subnet to intercept sensitive i
6.5
MEDIUM
CVE-2020-12812
< 6.0.10
An improper authentication vulnerability in SSL VPN in FortiOS 6.4.0, 6.2.0 to 6.2.3, 6.0.9 and below may result in a user being a
9.8
CRITICAL
CVE-2019-17655
< 6.2.3
A cleartext storage in a file or on disk (CWE-313) vulnerability in FortiOS SSL VPN 6.2.0 through 6.2.2, 6.0.9 and earlier and For
5.3
MEDIUM
CVE-2018-13371
<= 5.4.10
An external control of system vulnerability in FortiOS may allow an authenticated, regular user to change the routing settings of
8.8
HIGH
CVE-2019-6696
>= 5.4.0 and <= 6.0.8
An improper input validation vulnerability in FortiOS 6.2.1, 6.2.0, 6.0.8 and below until 5.4.0 under admin webUI may allow an att
6.1
MEDIUM
CVE-2019-5593
<= 5.6.10
Improper permission or value checking in the CLI console may allow a non-privileged user to obtain Fortinet FortiOS plaint text pr
5.5
MEDIUM
CVE-2019-15705
<= 6.0.6
An Improper Input Validation vulnerability in the SSL VPN portal of FortiOS versions 6.2.1 and below, and 6.0.6 and below may allo
7.5
HIGH
CVE-2019-6693
<= 5.6.10
Use of a hard-coded cryptographic key to cipher sensitive data in FortiOS configuration backup file may allow an attacker with acc
6.5
MEDIUM
CVE-2018-9195
<= 6.0.6
Use of a hardcoded cryptographic key in the FortiGuard services communication protocol may allow a Man in the middle with knowledg
5.9
MEDIUM
CVE-2019-15703
<= 5.6.9
An Insufficient Entropy in PRNG vulnerability in Fortinet FortiOS 6.2.1, 6.2.0, 6.0.8 and below for device not enable hardware TRN
7.5
HIGH
CVE-2018-13367
<= 6.2.0
An information exposure vulnerability in FortiOS 6.2.3, 6.2.0 and below may allow an unauthenticated attacker to gain platform inf
5.3
MEDIUM
CVE-2019-5588
>= 6.0.0 and <= 6.0.4
A reflected Cross-Site-Scripting (XSS) vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4 under SSL VPN web portal may allow an atta
6.1
MEDIUM
CVE-2019-5587
< 6.0.5
Lack of root file system integrity checking in Fortinet FortiOS VM application images all versions below 6.0.5 may allow attacker
6.5
MEDIUM
CVE-2019-5586
>= 5.2.0 and <= 6.0.4
A reflected Cross-Site-Scripting (XSS) vulnerability in Fortinet FortiOS 5.2.0 to 5.6.10, 6.0.0 to 6.0.4 under SSL VPN web portal
6.1
MEDIUM
CVE-2018-13384
< 6.0.5
A Host Header Redirection vulnerability in Fortinet FortiOS all versions below 6.0.5 under SSL VPN web portal allows a remote atta
6.1
MEDIUM
CVE-2018-13382
>= 5.4.1 and < 5.4.11
An Improper Authorization vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.8 and 5.4.1 to 5.4.10 and FortiProxy 2.0.
9.1
CRITICAL
CVE-2018-13381
<= 5.2.14
A buffer overflow vulnerability in Fortinet FortiOS 6.0.0 through 6.0.4, 5.6.0 through 5.6.7, 5.4 and earlier versions and FortiPr
5.3
MEDIUM
CVE-2018-13380
<= 5.2
A Cross-site Scripting (XSS) vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.7, 5.4.0 to 5.4.12, 5.2 and below and
4.7
MEDIUM
CVE-2018-13379
>= 5.4.6 and < 5.4.13
An Improper Limitation of a Pathname to a Restricted Directory ("Path Traversal") in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.3 to 5.6
9.1
CRITICAL
CVE-2018-13365
<= 5.6.5
An Information Exposure vulnerability in Fortinet FortiOS 6.0.1, 5.6.5 and below, allow attackers to learn private IP as well as t
5.3
MEDIUM
CVE-2018-13383
>= 5.2.0 and < 5.2.15
A heap buffer overflow in Fortinet FortiOS 6.0.0 through 6.0.4, 5.6.0 through 5.6.10, 5.4.0 through 5.4.12, 5.2.14 and earlier and
4.3
MEDIUM
CVE-2018-13366
<= 5.6.7
An information disclosure vulnerability in Fortinet FortiOS 6.0.1, 5.6.7 and below allows attacker to reveals serial number of For
5.3
MEDIUM
CVE-2017-17544
<= 5.4.0
A privilege escalation vulnerability in Fortinet FortiOS 6.0.0 to 6.0.6, 5.6.0 to 5.6.10, 5.4 and below allows admin users to elev
7.2
HIGH
CVE-2018-1352
all versions
A format string vulnerability in Fortinet FortiOS 5.6.0 allows attacker to execute unauthorized code or commands via the SSH usern
9.8
CRITICAL
CVE-2018-13374
< 6.0.3
A Improper Access Control in Fortinet FortiOS 6.0.2, 5.6.7 and before, FortiADC 6.1.0, 6.0.0 to 6.0.1, 5.4.0 to 5.4.4 allows attac
4.3
MEDIUM
CVE-2018-13376
<= 5.2.12
An uninitialized memory buffer leak exists in Fortinet FortiOS 5.6.1 to 5.6.3, 5.4.6 to 5.4.7, 5.2 all versions under web proxy's
7.5
HIGH
CVE-2018-9194
>= 5.4.6 and <= 5.4.9
A plaintext recovery of encrypted messages or a Man-in-the-middle (MiTM) attack on RSA PKCS #1 v1.5 encryption may be possible wit
5.9
MEDIUM
CVE-2018-9192
>= 5.4.6 and <= 5.4.9
A plaintext recovery of encrypted messages or a Man-in-the-middle (MiTM) attack on RSA PKCS #1 v1.5 encryption may be possible wit
5.9
MEDIUM
CVE-2018-9185
<= 6.0.0
An information disclosure vulnerability in Fortinet FortiOS 6.0.0 and below versions reveals user's web portal login credentials i
8.1
HIGH
CVE-2017-14185
>= 5.2.0 and <= 5.2.13
An Information Disclosure vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.8 and 5.2 all versions allows SSL VPN web
5.3
MEDIUM
CVE-2017-14187
<= 5.2.0
A local privilege escalation and local code execution vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.8, and 5.2 an
6.2
MEDIUM
CVE-2012-0941
>= 4.3.0 and < 4.3.6
Multiple cross-site scripting (XSS) vulnerabilities in Fortinet FortiGate UTM WAF appliances with FortiOS 4.3.x before 4.3.6 allow
6.1
MEDIUM
CVE-2017-14190
<= 5.2.0
A Cross-site Scripting vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.7, 5.2 and earlier, allows attacker to injec
6.1
MEDIUM
CVE-2017-7738
<= 5.2
An Information Disclosure vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.5, 5.2 and below versions allow an admin
7.2
HIGH
CVE-2017-14186
<= 5.0
A Cross-site Scripting (XSS) vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.7, 5.4 and below versions under SSL VP
5.4
MEDIUM
CVE-2017-7739
all versions
A reflected Cross-site Scripting (XSS) vulnerability in web proxy disclaimer response web pages in Fortinet FortiOS 5.6.0, 5.4.0 t
6.1
MEDIUM
CVE-2017-7733
all versions
A Cross-Site-Scripting (XSS) vulnerability in Fortinet FortiOS 5.4.0 to 5.4.5 and 5.6.0 allows a remote unauthenticated attacker t
6.1
MEDIUM
CVE-2017-14182
all versions
A Denial of Service (DoS) vulnerability in Fortinet FortiOS 5.4.0 to 5.4.5 allows an authenticated user to cause the web GUI to be
6.5
MEDIUM
CVE-2017-7735
all versions
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.2.0 through 5.2.11 and 5.4.0 through 5.4.4 allows attackers to
5.4
MEDIUM
CVE-2017-7734
all versions
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 through 5.4.4 allows attackers to execute unauthorized cod
5.4
MEDIUM
CVE-2017-3133
<= 5.6.0
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and earlier allows attackers to execute unauthorized code
6.1
MEDIUM
CVE-2017-3132
<= 5.6.0
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and earlier allows attackers to Execute unauthorized code
6.1
MEDIUM
CVE-2017-3131
all versions
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 through 5.4.4 and 5.6.0 allows attackers to execute unauth
5.4
MEDIUM
CVE-2017-3130
all versions
An information disclosure vulnerability in Fortinet FortiOS 5.6.0, 5.4.4 and below versions allows attacker to get FortiOS version
7.5
HIGH
CVE-2017-3127
all versions
A Cross-Site Scripting vulnerability in Fortinet FortiGate 5.2.0 through 5.2.10 allows attacker to execute unauthorized code or co
6.1
MEDIUM
CVE-2017-3128
all versions
A stored XSS (Cross-Site-Scripting) vulnerability in Fortinet FortiOS allows attackers to execute unauthorized code or commands vi
4.8
MEDIUM
CVE-2016-7542
all versions
A read-only administrator on Fortinet devices with FortiOS 5.2.x before 5.2.10 GA and 5.4.x before 5.4.2 GA may have access to rea
4.9
MEDIUM
CVE-2016-7541
all versions
Long lived sessions in Fortinet FortiGate devices with FortiOS 5.x before 5.4.0 could violate a security policy during IPS signatu
5.9
MEDIUM
CVE-2016-8492
<= 4.3.18
The implementation of an ANSI X9.31 RNG in Fortinet FortiGate allows attackers to gain unauthorized read access to data handled by
5.9
MEDIUM
CVE-2016-6909
>= 4.1.0 and < 4.1.11
Buffer overflow in the Cookie parser in Fortinet FortiOS 4.x before 4.1.11, 4.2.x before 4.2.13, and 4.3.x before 4.3.9 and FortiS
9.8
CRITICAL
CVE-2016-3978
all versions
The Web User Interface (WebUI) in FortiOS 5.0.x before 5.0.13, 5.2.x before 5.2.3, and 5.4.x before 5.4.0 allows remote attackers
6.1
MEDIUM
CVE-2016-1909
<= 4.3.16
Fortinet FortiAnalyzer before 5.0.12 and 5.2.x before 5.2.5; FortiSwitch 3.3.x before 3.3.3; FortiCache 3.0.x before 3.0.8; and Fo
9.8
CRITICAL
CVE-2015-7361
all versions
FortiOS 5.2.3, when configured to use High Availability (HA) and the dedicated management interface is enabled, does not require a
CVE-2015-5965
<= 4.3.12
The SSL-VPN feature in Fortinet FortiOS before 4.3.13 only checks the first byte of the TLS MAC in finished messages, which makes
CVE-2015-3626
<= 5.2.3
Cross-site scripting (XSS) vulnerability in the DHCP Monitor page in the Web User Interface (WebUI) in Fortinet FortiOS before 5.2
CVE-2015-2323
all versions
FortiOS 5.0.x before 5.0.12 and 5.2.x before 5.2.4 supports anonymous, export, RC4, and possibly other weak ciphers when using TLS
CVE-2015-1880
all versions
Cross-site scripting (XSS) vulnerability in the sslvpn login page in Fortinet FortiOS 5.2.x before 5.2.3 allows remote attackers t
CVE-2014-8616
all versions
Multiple cross-site scripting (XSS) vulnerabilities in Fortinet FortiOS 5.2.x before 5.2.3 allow remote attackers to inject arbitr
CVE-2015-1571
all versions
The CAPWAP DTLS protocol implementation in Fortinet FortiOS 5.0 Patch 7 build 4457 uses the same certificate and private key acros
CVE-2015-1452
all versions
The Control and Provisioning of Wireless Access Points (CAPWAP) daemon in Fortinet FortiOS 5.0 Patch 7 build 4457 allows remote at
CVE-2015-1451
all versions
Multiple cross-site scripting (XSS) vulnerabilities in Fortinet FortiOS 5.0 Patch 7 build 4457 allow remote authenticated users to
CVE-2014-0351
<= 4.3.15
The FortiManager protocol service in Fortinet FortiOS before 4.3.16 and 5.x before 5.0.8 on FortiGate devices does not prevent use
CVE-2014-2216
<= 4.3.15
The FortiManager protocol service in Fortinet FortiOS before 4.3.16 and 5.0.0 before 5.0.8 on FortiGate devices allows remote atta
CVE-2013-7182
all versions
Cross-site scripting (XSS) vulnerability in firewall/schedule/recurrdlg in Fortinet FortiOS 5.0.5 allows remote attackers to injec
CVE-2013-1414
<= 4.3.12
Multiple cross-site request forgery (CSRF) vulnerabilities in Fortinet FortiOS on FortiGate firewall devices before 4.3.13 and 5.x
CVE-2013-4604
<= 5.0.2
Fortinet FortiOS before 5.0.3 on FortiGate devices does not properly restrict Guest capabilities, which allows remote authenticate
CVE-2006-3222
all versions
The FTP proxy module in Fortinet FortiOS (FortiGate) before 2.80 MR12 and 3.0 MR2 allows remote attackers to bypass anti-virus sca
CVE-2005-3058
<= 2.8_mr10
Interpretation conflict in Fortinet FortiGate 2.8, running FortiOS 2.8MR10 and v3beta, allows remote attackers to bypass the URL b
CVE-2005-3057
<= 2.8_mr10
The FTP component in FortiGate 2.8 running FortiOS 2.8MR10 and v3beta, and other versions before 3.0 MR1, allows remote attackers
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin