Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

855 matches found

Vulnerability Lab
Vulnerability Labadded 2016/08/03 12:0 a.m.46 views

FortiAnalyzer & FortiManager - CS Cross Site Vulnerability

Document Title: =============== FortiAnalyzer & FortiManager - CS Cross Site Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1686 Fortinet PSIRT ID: 1624489 Bulletin:...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Labadded 2016/08/02 12:0 a.m.39 views

FortiManager (Series) - Multiple Web Vulnerabilities

Document Title: =============== FortiManager Series - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1684 Fortinet PSIRT ID: 1624459 Bulletin:...

7.1AI score
Exploits0
hackapp
hackappadded 2016/04/01 8:52 a.m.20 views

FortiClient VPN - External URLs, KeyStore usage, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application FortiClient VPN published at the 'play' market has multiple vulnerabilities...

0.2AI score
Exploits0References1Affected Software1
CNVD
CNVDadded 2016/01/15 12:0 a.m.2 views

Fortinet FortiClient Linux SSLVPN build elevation of privilege vulnerability

Fortinet FortiClient Linux SSLVPN is a Linux-based VPN client for connecting to Fortinet devices. An elevation of privilege vulnerability exists in versions prior to Fortinet FortiClient Linux SSLVPN build 2313, which allows local users to gain privileges via the assistant/sabloid etuid program...

7.8CVSS7.3AI score0.00374EPSS
Exploits0References1
NVD
NVDadded 2016/01/08 7:59 p.m.16 views

CVE-2015-7362

Fortinet FortiClient Linux SSLVPN before build 2313, when installed on Linux in a home directory that is world readable and executable, allows local users to gain privileges via the helper/subroc setuid program...

7.8CVSS7.7AI score0.00374EPSS
Exploits0References2
Prion
Prionadded 2016/01/08 7:59 p.m.13 views

Design/Logic Flaw

Fortinet FortiClient Linux SSLVPN before build 2313, when installed on Linux in a home directory that is world readable and executable, allows local users to gain privileges via the helper/subroc setuid program...

7.2CVSS7AI score0.00374EPSS
Exploits0References2
Cvelist
Cvelistadded 2016/01/08 7:0 p.m.24 views

CVE-2015-7362

Fortinet FortiClient Linux SSLVPN before build 2313, when installed on Linux in a home directory that is world readable and executable, allows local users to gain privileges via the helper/subroc setuid program...

7.7AI score0.00374EPSS
Exploits0References2
CVE
CVEadded 2016/01/08 7:0 p.m.43 views

CVE-2015-7362

CVE-2015-7362 affects Fortinet FortiClient Linux SSLVPN prior to build 2313. When installed in a home directory that is world-readable and -executable, local users can escalate privileges via the helper/subroc setuid program (local privilege escalation). Affected component is the FortiClient SSLV...

7.8CVSS7.6AI score0.00374EPSS
Exploits0References2Affected Software1
securityvulns
securityvulnsadded 2015/10/25 12:0 a.m.64 views

Fortinet FortiClient multiple security vulnerabilities

Multiple privilege escalations...

7.2CVSS2.4AI score0.02029EPSS
Exploits5References1Affected Software1
securityvulns
securityvulnsadded 2015/10/25 12:0 a.m.98 views

[CORE-2015-0013] - FortiClient Antivirus Multiple Vulnerabilities

Advisory Information Title: FortiClient Antivirus Multiple Vulnerabilities Advisory ID: CORE-2015-0013 Advisory URL: http://www.coresecurity.com/advisories/forticlient-antivirus-multiple-vulnerabilities Date published: 2015-09-01 Date of last update: 2015-09-01 Vendors contacted: Fortinet...

7.2CVSS6.6AI score0.02029EPSS
Exploits5
CNVD
CNVDadded 2015/09/06 12:0 a.m.3 views

Fortinet FortiClient Arbitrary Code Execution Vulnerability

Fortinet FortiClient is a Fortinet endpoint security solution that provides end-users with antivirus, encryption, and other services. An arbitrary code vulnerability exists in Fortinet FortiClient versions prior to 5.2.4, which allows local users to execute arbitrary code with kernel privileges b...

7.2CVSS7.3AI score0.02029EPSS
Exploits5References1
CNVD
CNVDadded 2015/09/06 12:0 a.m.5 views

Fortinet FortiClient Driver File Disclosure Vulnerability

Fortinet FortiClient is a Fortinet endpoint security solution that provides end users with anti-virus, encryption and other services. A driver file disclosure vulnerability exists in Fortinet FortiClient versions prior to 5.2.4, which allows local users to read arbitrary kernel memory via a...

2.1CVSS6.2AI score0.01011EPSS
Exploits2References1
CNVD
CNVDadded 2015/09/06 12:0 a.m.3 views

Fortinet FortiClient Privilege Vulnerability

Fortinet FortiClient is a Fortinet endpoint security solution that provides end users with anti-virus, encryption and other services. An elevation of privilege vulnerability exists in Fortinet FortiClient versions prior to 5.2.4, which allows a local user to obtain elevation of privilege via...

7.2CVSS6.8AI score0.00515EPSS
Exploits0References1
CNVD
CNVDadded 2015/09/06 12:0 a.m.2 views

Fortinet FortiClient Unauthorized Operation Vulnerability

Fortinet FortiClient is a Fortinet endpoint security solution that provides end users with anti-virus, encryption and other services. An unauthorized operation vulnerability exists in Fortinet FortiClient versions prior to 5.2.4, which allows a local user write to write to arbitrary memory...

7.2CVSS6.7AI score0.00515EPSS
Exploits0References1
NVD
NVDadded 2015/09/03 2:59 p.m.21 views

CVE-2015-5737

The 1 mdare6448.sys, 2 mdare3248.sys, 3 mdare3252.sys, 4 mdare6452.sys, and 5 Fortishield.sys drivers in Fortinet FortiClient before 5.2.4 do not properly restrict access to the API for management of processes and the Windows registry, which allows local users to obtain a privileged handle to a P...

7.2CVSS6.6AI score0.00515EPSS
Exploits0References7
NVD
NVDadded 2015/09/03 2:59 p.m.21 views

CVE-2015-5736

The Fortishield.sys driver in Fortinet FortiClient before 5.2.4 allows local users to execute arbitrary code with kernel privileges by setting the callback function in a 1 0x220024 or 2 0x220028 ioctl call...

7.2CVSS7AI score0.02029EPSS
Exploits5References10
NVD
NVDadded 2015/09/03 2:59 p.m.21 views

CVE-2015-5735

The 1 mdare6448.sys, 2 mdare3248.sys, 3 mdare3252.sys, and 4 mdare6452.sys drivers in Fortinet FortiClient before 5.2.4 allow local users to write to arbitrary memory locations via a 0x226108 ioctl call...

7.2CVSS6.4AI score0.00515EPSS
Exploits0References7
Prion
Prionadded 2015/09/03 2:59 p.m.35 views

Design/Logic Flaw

The 1 mdare6448.sys, 2 mdare3248.sys, 3 mdare3252.sys, and 4 mdare6452.sys drivers in Fortinet FortiClient before 5.2.4 allow local users to read arbitrary kernel memory via a 0x22608C ioctl call...

2.1CVSS6.6AI score0.01011EPSS
Exploits2References8Affected Software1
Prion
Prionadded 2015/09/03 2:59 p.m.16 views

Design/Logic Flaw

The 1 mdare6448.sys, 2 mdare3248.sys, 3 mdare3252.sys, and 4 mdare6452.sys drivers in Fortinet FortiClient before 5.2.4 allow local users to write to arbitrary memory locations via a 0x226108 ioctl call...

7.2CVSS6.9AI score0.00515EPSS
Exploits0References7Affected Software1
Prion
Prionadded 2015/09/03 2:59 p.m.19 views

Code injection

The 1 mdare6448.sys, 2 mdare3248.sys, 3 mdare3252.sys, 4 mdare6452.sys, and 5 Fortishield.sys drivers in Fortinet FortiClient before 5.2.4 do not properly restrict access to the API for management of processes and the Windows registry, which allows local users to obtain a privileged handle to a P...

7.2CVSS7.1AI score0.00515EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder