Latest medium severity vulnerabilities for "fortinet fortios" 7.0.0

Fortinet FortiOSNull Pointer Dereference

medium

6.5

First published (updated )

CVE-2023-29179

Fortinet FortiWebBuffer overflow in TFTP client library of CLI

medium

6.7

First published (updated )

CVE-2021-42757

Fortinet FortiProxyFortiOS - Improper authentication in fgfmd

medium

5.2

First published (updated )

FG-IR-24-032

Fortinet FortiOSInfoleak

medium

5

First published (updated )

CVE-2021-32600

Fortinet FortiOSDebug commands allow memory manipulation

medium

6.6

First published (updated )

CVE-2021-36169

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Fortinet FortiProxyBuffer Overflow

medium

6.7

First published (updated )

CVE-2021-44170

Fortinet FortiWebBuffer overflow in TFTP client library of CLI

medium

6.3

First published (updated )

FG-IR-21-173

Fortinet FortiOSExisting websocket connection persists after deleting API admin

medium

4.1

First published (updated )

FG-IR-23-028

Fortinet FortiOSInfoleak

medium

5.3

First published (updated )

CVE-2022-41329

Fortinet FortiOSFortiOS - Format String in CLI command

medium

6.1

First published (updated )

FG-IR-23-413

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Fortinet FortiOSImproper Inter-VDOM access control

medium

6.3

First published (updated )

CVE-2021-41032

Fortinet FortiOSA server-generated error message containing sensitive information in Fortinet FortiOS 7.0.0 through …

medium

4.3

First published (updated )

CVE-2021-43206

Fortinet FortiOSXSS

medium

6.1

First published (updated )

CVE-2021-43081

Fortinet FortiOSAn improper certificate validation vulnerability [CWE-295] in FortiOS 6.0.0 through 6.0.14, 6.2.0 th…

medium

5.4

First published (updated )

CVE-2022-22306

Fortinet FortiOSXSS

medium

6.1

First published (updated )

CVE-2022-23438

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Fortinet FortiOSAn improper access control vulnerability [CWE-284] in FortiOS versions 6.2.0 through 6.2.11, 6.4.0 t…

medium

4.3

First published (updated )

CVE-2022-23442

Fortinet FortiOSXSS

medium

5.4

First published (updated )

CVE-2021-43080

Fortinet FortiOSRead-Only users able to add/modify the Interface fields using the API

medium

6.9

First published (updated )

CVE-2022-38380

Fortinet FortiOSStored cross-site scripting in replacement messages visualization

medium

5.4

First published (updated )

CVE-2022-40680

Fortinet FortiProxyAn improper verification of cryptographic signature vulnerability [CWE-347] in FortiWeb 6.4 all vers…

medium

4.3

First published (updated )

CVE-2021-43074

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Fortinet FortiOSA improper neutralization of crlf sequences in http headers ('http response splitting') in Fortinet …

medium

5.4

First published (updated )

CVE-2022-42472

Fortinet FortiProxyAccess of NULL pointer in SSLVPNd

medium

6.5

First published (updated )

CVE-2022-45861

Fortinet FortiProxyOpen redirect in sslvpnd

medium

5.4

First published (updated )

CVE-2023-22641

Fortinet FortiOSA permissive list of allowed inputs vulnerability [CWE-183] in FortiGate version 7.2.3 and below, ve…

medium

4.3

First published (updated )

CVE-2022-42469

Fortinet FortiProxyPath Traversal

medium

6.5

First published (updated )

CVE-2022-42474

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Fortinet FortiProxySMTP password ciphertext exposure in Log

medium

6.5

First published (updated )

CVE-2023-26207

Fortinet FortiOSLack of certificate verification when establishing secure connections

medium

4.8

First published (updated )

CVE-2023-29175

Fortinet FortiProxyAccess of uninitialized pointer in administrative interface API

medium

4.3

First published (updated )

CVE-2023-29178

Fortinet FortiOSA loop with unreachable exit condition ('infinite loop') in Fortinet FortiOS version 7.2.0 through 7…

medium

6.5

First published (updated )

CVE-2023-33305

Fortinet FortiOSAuthenticated user null pointer dereference in SSL-VPN

medium

6.5

First published (updated )

CVE-2023-33306

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Fortinet FortiOSNull Pointer Dereference

Fortinet FortiWebBuffer overflow in TFTP client library of CLI

Fortinet FortiProxyFortiOS - Improper authentication in fgfmd

Fortinet FortiOSInfoleak

Fortinet FortiOSDebug commands allow memory manipulation

Never miss a vulnerability like this again

Fortinet FortiProxyBuffer Overflow

Fortinet FortiWebBuffer overflow in TFTP client library of CLI

Fortinet FortiOSExisting websocket connection persists after deleting API admin

Fortinet FortiOSInfoleak

Fortinet FortiOSFortiOS - Format String in CLI command

Never miss a vulnerability like this again

Fortinet FortiOSImproper Inter-VDOM access control

Fortinet FortiOSA server-generated error message containing sensitive information in Fortinet FortiOS 7.0.0 through …

Fortinet FortiOSXSS

Fortinet FortiOSAn improper certificate validation vulnerability [CWE-295] in FortiOS 6.0.0 through 6.0.14, 6.2.0 th…

Fortinet FortiOSXSS

Never miss a vulnerability like this again

Fortinet FortiOSAn improper access control vulnerability [CWE-284] in FortiOS versions 6.2.0 through 6.2.11, 6.4.0 t…

Fortinet FortiOSXSS

Fortinet FortiOSRead-Only users able to add/modify the Interface fields using the API

Fortinet FortiOSStored cross-site scripting in replacement messages visualization

Fortinet FortiProxyAn improper verification of cryptographic signature vulnerability [CWE-347] in FortiWeb 6.4 all vers…

Never miss a vulnerability like this again

Fortinet FortiOSA improper neutralization of crlf sequences in http headers ('http response splitting') in Fortinet …

Fortinet FortiProxyAccess of NULL pointer in SSLVPNd

Fortinet FortiProxyOpen redirect in sslvpnd

Fortinet FortiOSA permissive list of allowed inputs vulnerability [CWE-183] in FortiGate version 7.2.3 and below, ve…

Fortinet FortiProxyPath Traversal

Never miss a vulnerability like this again

Fortinet FortiProxySMTP password ciphertext exposure in Log

Fortinet FortiOSLack of certificate verification when establishing secure connections

Fortinet FortiProxyAccess of uninitialized pointer in administrative interface API

Fortinet FortiOSA loop with unreachable exit condition ('infinite loop') in Fortinet FortiOS version 7.2.0 through 7…

Fortinet FortiOSAuthenticated user null pointer dereference in SSL-VPN

Never miss a vulnerability like this again

Company

Resources

Contact