Fortinet多款产品 安全漏洞

Fortinet FortiManager is a product of the American company Fortinet. Fortinet FortiManager is a centralized network security management platform. Fortinet FortiAnalyzer is a centralized network security reporting solution. Fortinet PortiPortal is a cloud-based multi-tenant portal. Several Fortine...

CVE-2024-40585

An insertion of sensitive information into log file vulnerabilities CWE-532 in FortiManager version 7.4.0, version 7.2.3 and below, version 7.0.8 and below, version 6.4.12 and below, version 6.2.11 and below and FortiAnalyzer version 7.4.0, version 7.2.3 and below, version 7.0.8 and below, versio...

CVE-2024-40585

CVE-2024-40585 affects Fortinet FortiManager and FortiAnalyzer: multiple older/fixed releases (FortiManager 7.4.0, 7.2.3 and below, 7.0.8 and below, 6.4.12 and below, 6.2.11 and below; FortiAnalyzer 7.4.0, 7.2.3 and below, 7.0.8 and below, 6.4.12 and below, 6.2.11 and below) contain a vulnerabili...

CVE-2021-26104

Multiple OS command injection CWE-78 vulnerabilities in the command line interface of FortiManager 6.2.7 and below, 6.4.5 and below and all versions of 6.2.x, 6.0.x and 5.6.x, FortiAnalyzer 6.2.7 and below, 6.4.5 and below and all versions of 6.2.x, 6.0.x and 5.6.x, and FortiPortal 5.2.5 and belo...

Vulnerabilities fixed in FortiAnalyzer

Fortinet has fixed vulnerabilities in FortiAnalyzer. The vulnerability allows a remote attacker to execute arbitrary code under user privileges. Fortinet has released updates to address the vulnerabilities. fix. More information can be found on the page below:...