CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/05/12 6:16 p.m.•6 views

CVE-2026-25690

6.5CVSS0.00049EPSS

CVE•added 2026/05/12 4:54 p.m.•8 views

CVE-2026-25690

CVE-2026-25690 affects Fortinet FortiDeceptor 6.0.0–6.0.2, 5.3.0–5.3.3, 5.2.0–5.2.1, and all 5.1/5.0 versions. It results from improper neutralization of argument delimiters in a command (argument injection). An authenticated attacker with at least read-only admin privileges can read log files vi...

6.5CVSS5.8AI score0.00049EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/05/12 4:54 p.m.•25 views

CVE-2026-25690

4.3CVSS0.00049EPSS

CNNVD•added 2026/05/12 12:0 a.m.•3 views

Fortinet FortiDeceptor 参数注入漏洞

Fortinet FortiDeceptor is a network threat detection platform developed by the American company Fortinet. This platform primarily exploits deceptive techniques to uncover network threats. Versions of Fortinet FortiDeceptor, ranging from 6.0.0 to 6.0.2, 5.3.0 to 5.3.3, 5.2.0 to 5.2.1, all versions...

6.5CVSS5.8AI score0.00049EPSS

Positive Technologies•added 2026/05/12 12:0 a.m.•6 views

PT-2026-40114

4.3CVSS5.8AI score0.00049EPSS

RedhatCVE•added 2026/03/26 3:12 p.m.•1 views

CVE-2026-25689

An improper neutralization of argument delimiters in a command 'argument injection' vulnerability in Fortinet FortiDeceptor 6.2.0, FortiDeceptor 6.0 all versions, FortiDeceptor 5.3 all versions, FortiDeceptor 5.2 all versions, FortiDeceptor 5.1 all versions, FortiDeceptor 5.0 all versions,...

EUVD•added 2026/03/10 6:31 p.m.•1 views

EUVD-2026-10530

NVD•added 2026/03/10 6:18 p.m.•2 views

CVE-2026-25689

6.5CVSS0.00058EPSS

OSV•added 2026/03/10 6:18 p.m.•0 views

CVE-2026-25689

6.5CVSS5.8AI score

CVE•added 2026/03/10 4:44 p.m.•4 views

CVE-2026-25689

CVE-2026-25689 is a Fortinet FortiDeceptor issue: an improper neutralization of argument delimiters in a command (argument injection) vulnerability that could let a privileged attacker with super-admin/CLI access delete sensitive files via crafted HTTP requests. Affected versions include FortiDec...

Exploits0References1Affected Software1

Cvelist•added 2026/03/10 4:44 p.m.•23 views

CVE-2026-25689

6.5CVSS0.00058EPSS

ATTACKERKB•added 2026/03/10 4:44 p.m.•2 views

CVE-2026-25689

Exploits0References2Affected Software1

Vulnrichment•added 2026/03/10 4:44 p.m.•2 views

CVE-2026-25689

CNNVD•added 2026/03/10 12:0 a.m.•3 views

Fortinet FortiDeceptor 参数注入漏洞

Fortinet FortiDeceptor is a network threat detection platform developed by the American company Fortinet. This platform primarily exposes network threats through deceptive techniques. Fortinet FortiDeceptor has a parameter injection vulnerability, which stems from improper use of parameter...

Positive Technologies•added 2026/03/10 12:0 a.m.•2 views

PT-2026-24247

RedhatCVE•added 2026/01/09 8:45 a.m.•6 views

CVE-2022-38373

An improper neutralization of input during web page generation vulnerability CWE-79 in FortiDeceptor management interface 4.2.0, 4.1.0 through 4.1.1, 4.0.2 may allow an authenticated user to perform a cross site scripting XSS attack via sending requests with specially crafted lure resource ID...

8CVSS5.6AI score0.00835EPSS

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-27791

Malware in sbrugna...

8.1CVSS8.1AI score0.00408EPSS

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-21399

Malware in sbrugna...

9CVSS8.7AI score0.05549EPSS