2973 matches found
Privilege escalation
An improper privilege management vulnerability CWE-269 in Fortinet FortiOS version 7.2.0 and before 7.0.7 and FortiProxy version 7.2.0 through 7.2.1 and before 7.0.7 allows an attacker that has access to the admin profile section System subsection Administrator Users to modify their own profile a...
Input validation
An improper certificate validation vulnerability CWE-295 in FortiOS 7.2.0 through 7.2.3, 7.0.0 through 7.0.7, 6.4 all versions, 6.2 all versions, 6.0 all versions and FortiProxy 7.0.0 through 7.0.6, 2.0 all versions, 1.2 all versions may allow a remote and unauthenticated attacker to perform a...
Path traversal
A relative path traversal vulnerability CWE-23 in Fortinet FortiOS version 7.2.0 through 7.2.2, 7.0.0 through 7.0.8 and before 6.4.10, FortiProxy version 7.2.0 through 7.2.1, 7.0.0 through 7.0.7 and before 2.0.10, FortiSwitchManager 7.2.0 and before 7.0.0 allows an authenticated attacker to read...
Information disclosure
An improper verification of cryptographic signature vulnerability CWE-347 in FortiWeb 6.4 all versions, 6.3.16 and below, 6.2 all versions, 6.1 all versions, 6.0 all versions; FortiOS 7.0.3 and below, 6.4.8 and below, 6.2 all versions, 6.0 all versions; FortiSwitch 7.0.3 and below, 6.4.10 and...
Information disclosure
A missing cryptographic steps vulnerability CWE-325 in the functions that encrypt the DHCP and DNS keys in Fortinet FortiOS version 7.2.0, 7.0.0 through 7.0.5, 6.4.0 through 6.4.9, 6.2.x and 6.0.x may allow an attacker in possession of the encrypted key to decipher it...
CVE-2022-29054
A missing cryptographic steps vulnerability CWE-325 in the functions that encrypt the DHCP and DNS keys in Fortinet FortiOS version 7.2.0, 7.0.0 through 7.0.5, 6.4.0 through 6.4.9, 6.2.x and 6.0.x may allow an attacker in possession of the encrypted key to decipher it...
CVE-2022-29054
A missing cryptographic steps vulnerability CWE-325 in the functions that encrypt the DHCP and DNS keys in Fortinet FortiOS version 7.2.0, 7.0.0 through 7.0.5, 6.4.0 through 6.4.9, 6.2.x and 6.0.x may allow an attacker in possession of the encrypted key to decipher it...
CVE-2022-29054
CVE-2022-29054 describes a missing cryptographic steps vulnerability (CWE-325) in Fortinet FortiOS and FortiProxy where the functions that encrypt DHCP and DNS keys (e.g., ddns-key, n-mhae-key) may allow an attacker who possesses the encrypted key to decipher it. Affected FortiOS/FortiProxy versi...
CVE-2022-42472
CVE-2022-42472 affects Fortinet FortiOS and FortiProxy prior to fixed builds, with an HTTP Response Splitting issue caused by improper CRLF neutralization in HTTP headers. The vulnerability allows an authenticated, remote attacker to perform an HTTP request splitting attack and gain control over ...
CVE-2022-42472
A improper neutralization of crlf sequences in http headers 'http response splitting' in Fortinet FortiOS versions 7.2.0 through 7.2.2, 7.0.0 through 7.0.8, 6.4.0 through 6.4.11, 6.2.0 through 6.2.12, 6.0.0 through 6.0.16, FortiProxy 7.2.0 through 7.2.1, 7.0.0 through 7.0.7, 2.0.0 through 2.0.10,...
CVE-2022-42472
A improper neutralization of crlf sequences in http headers 'http response splitting' in Fortinet FortiOS versions 7.2.0 through 7.2.2, 7.0.0 through 7.0.8, 6.4.0 through 6.4.11, 6.2.0 through 6.2.12, 6.0.0 through 6.0.16, FortiProxy 7.2.0 through 7.2.1, 7.0.0 through 7.0.7, 2.0.0 through 2.0.10,...
CVE-2022-38378
An improper privilege management vulnerability CWE-269 in Fortinet FortiOS version 7.2.0 and before 7.0.7 and FortiProxy version 7.2.0 through 7.2.1 and before 7.0.7 allows an attacker that has access to the admin profile section System subsection Administrator Users to modify their own profile a...
CVE-2022-38378
An improper privilege management vulnerability CWE-269 in Fortinet FortiOS version 7.2.0 and before 7.0.7 and FortiProxy version 7.2.0 through 7.2.1 and before 7.0.7 allows an attacker that has access to the admin profile section System subsection Administrator Users to modify their own profile a...
CVE-2022-38378
Fortinet CVE-2022-38378 is an improper privilege management (CWE-269) vulnerability. FortiOS versions 7.2.0 and earlier than 7.0.7, and FortiProxy 7.2.0–7.2.1 (before 7.0.7) allow an attacker with access to the admin profile’s System > Administrator Users to modify their own profile and upgrad...
CVE-2022-41334
An improper neutralization of input during web page generation CWE-79 vulnerability in FortiOS versions 7.0.0 to 7.0.7 and 7.2.0 to 7.2.3 may allow a remote, unauthenticated attacker to launch a cross site scripting XSS attack via the "redir" parameter of the URL seen when the "Sign in with...
CVE-2022-41334
An improper neutralization of input during web page generation CWE-79 vulnerability in FortiOS versions 7.0.0 to 7.0.7 and 7.2.0 to 7.2.3 may allow a remote, unauthenticated attacker to launch a cross site scripting XSS attack via the "redir" parameter of the URL seen when the "Sign in with...
CVE-2022-41334
CVE-2022-41334 is an XSS vulnerability in Fortinet FortiOS and FortiProxy that arises from improper neutralization of user input during web page generation. Affected FortiOS versions are 7.0.0–7.0.7 and 7.2.0–7.2.3; exploitation can occur via the redir parameter in the FortiCloud sign-in flow by ...
CVE-2022-39948
An improper certificate validation vulnerability CWE-295 in FortiOS 7.2.0 through 7.2.3, 7.0.0 through 7.0.7, 6.4 all versions, 6.2 all versions, 6.0 all versions and FortiProxy 7.0.0 through 7.0.6, 2.0 all versions, 1.2 all versions may allow a remote and unauthenticated attacker to perform a...
CVE-2022-39948
CVE-2022-39948 is an improper certificate validation (CWE-295) vulnerability in FortiOS (versions 7.2.0–7.2.3, 7.0.0–7.0.7, 6.4, 6.2, 6.0) and FortiProxy (7.0.0–7.0.6, 2.0, 1.2). A remote, unauthenticated attacker could perform a Man-in-the-Middle attack on the communication between FortiOS/Forti...
CVE-2022-39948
An improper certificate validation vulnerability CWE-295 in FortiOS 7.2.0 through 7.2.3, 7.0.0 through 7.0.7, 6.4 all versions, 6.2 all versions, 6.0 all versions and FortiProxy 7.0.0 through 7.0.6, 2.0 all versions, 1.2 all versions may allow a remote and unauthenticated attacker to perform a...