FortiWebManager Security Vulnerabilities and Issues — FortiWebManager CVE List

cve

CVE-2024-23669

An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6.3.0 and 6.2.3 through 6.2.4 and 6.0.2 allows attacker to execute unauthorized code or commands via HTTP requests or...

8.8CVSS

7.8AI Score

0.001EPSS

2024-06-05 08:15 AM

25

cve

CVE-2024-23667

An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6.3.0 and 6.2.3 through 6.2.4 and 6.0.2 allows attacker to execute unauthorized code or commands via HTTP requests or...

7.8CVSS

7.8AI Score

0.0004EPSS

2024-06-03 10:15 AM

15

cve

CVE-2024-23670

An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6.3.0 and 6.2.3 through 6.2.4 and 6.0.2 allows attacker to execute unauthorized code or commands via HTTP requests or...

7.8CVSS

7.8AI Score

0.0004EPSS

2024-06-03 10:15 AM

15

cve

CVE-2024-23668

An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6.3.0 and 6.2.3 through 6.2.4 and 6.0.2 allows attacker to execute unauthorized code or commands via HTTP requests or...

8.8CVSS

7.8AI Score

0.0004EPSS

2024-06-03 10:15 AM

15

cve

CVE-2021-36175

An improper neutralization of input vulnerability [CWE-79] in FortiWebManager versions 6.2.3 and below, 6.0.2 and below may allow a remote authenticated attacker to inject malicious script/tags via the name/description/comments parameter of various sections of the...

5.4CVSS

5.2AI Score

0.001EPSS

2021-10-06 10:15 AM

22

cve

CVE-2017-14189

An improper access control vulnerability in Fortinet FortiWebManager 5.8.0 allows anyone that can access the admin webUI to successfully log-in regardless the provided...

9.8CVSS

9.3AI Score

0.005EPSS

2017-11-29 07:29 PM

25