The vulnerability of the FortiManager system’s operating system, FortiOS, allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the FortiManager system’s FortiOS operating system arises from errors in processing input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause service failures remotely...

The vulnerability of the FortiOS operating system arises from the use of weak encryption algorithms during TLS connections, allowing attackers to carry out phishing attacks and man-in-the-middle attacks.

The vulnerability of the FortiOS operating system arises from the use of weak encryption algorithms during TLS connections. Exploiting this vulnerability allows a remote attacker to perform phishing attacks and man-in-the-middle attacks...

The vulnerability of the SSL VPN web portal’s login page in the operating system FortiOS allows a hacker to inject arbitrary JavaScript or HTML code.

The vulnerability of the SSL VPN web portal’s login page in the operating system FortiOS arises due to insufficient protection of the web page structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary JavaScript or HTML code remotely...

The vulnerability of the FortiOS operating system, caused by errors in authentication mechanisms, allows a perpetrator to gain unauthorized access to the ZebOS shell.

The vulnerability of the FortiOS operating system is caused by errors in the authentication mechanism. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to the ZebOS shell...

The vulnerability in the FortiOS operating system’s web interface allows a hacker to perform cross-site fraudulently.

The vulnerability in the FortiOS operating system’s web interface is related to the lack of checks for the authenticity of HTTP requests. Exploiting this vulnerability allows a malicious actor to perform cross-site fraudulently...

The vulnerability of the CAPWAP DTLS protocol implementation in the FortiOS operating system allows a attacker to execute a type of “man-in-the-middle” attack.

The vulnerability of the CAPWAP DTLS protocol implementation in the FortiOS operating system arises from the use of identical certificates and secret keys for different clients. Exploiting this vulnerability allows a malicious actor to execute a “man-in-the-middle” attack remotely...

The vulnerability in the FortiOS operating system’s web interface allows a hacker to inject any desired JavaScript or HTML code.

The vulnerability in the user interface of the FortiOS operating system arises from insufficient protection of the web page structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary JavaScript or HTML code using the “redirect” parameter...

The vulnerability of the DHCP Monitor web interface of the FortiOS operating system allows a hacker to inject arbitrary JavaScript or HTML code.

The vulnerability of the DHCP Monitor web interface of the FortiOS operating system arises due to insufficient protection of the web page structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary JavaScript or HTML code remotely...

The vulnerability of the FortiManager system’s operating system, FortiOS, allows a perpetrator to carry out a “man-in-the-middle” attack, gain access to protected information, and redirect network traffic.

The vulnerability of the FortiManager operating system’s FortiOS component lies in the possibility of using weak encryption algorithms. Exploiting this vulnerability allows a malicious actor, operating remotely, to carry out a “man-in-the-middle” attack, gain access to protected information, and...

The vulnerability in the FortiOS operating system’s web interface allows a hacker to inject any desired JavaScript or HTML code.

The vulnerability in the FortiOS operating system’s web interface arises from insufficient protection of the web page structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary JavaScript or HTML code through user groups or template menus...

The vulnerability in the FortiOS operating system’s web interface allows a hacker to inject any desired JavaScript or HTML code.

The vulnerability in the FortiOS operating system’s web interface arises from insufficient protection of the web page structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary JavaScript or HTML code using the WTP Name or WTP Active Software Version request fields for...

The vulnerability in the FortiOS operating system’s web portal allows a hacker to inject any desired JavaScript or HTML code.

The vulnerability of the FortiOS operating system’s web portal stems from insufficient protection of the web page structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary JavaScript or HTML code using a specially crafted value for the “redir” parameter...

The vulnerability of the FortiOS operating system, related to the storage of FortiOS versions in the FortiOS IKE package, allows attackers to disclose sensitive information that is protected by this system.

The vulnerability of the FortiOS operating system is related to the storage of FortiOS versions in the FortiOS IKE packages. Exploiting this vulnerability allows a malicious actor to disclose sensitive information about FortiOS versions by checking the VendorID in the FortiOS IKE packages...

The vulnerability of the “Replacement Messages” component of the FortiOS operating system’s web interface, allowing a hacker to inject arbitrary JavaScript or HTML code

The vulnerability of the Replacement Messages component in the FortiOS operating system’s web interface arises due to insufficient protection of the web page structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary JavaScript or HTML code remotely...

The vulnerability of the FortiOS operating system, caused by access control errors, allows a hacker to execute arbitrary code.

Vulnerability of the FortiOS operating system caused by access control errors. Exploiting this vulnerability allows a attacker to execute arbitrary code by placing it on a USB drive connected to the FortiGate, through the allowed fnsysctl program...

The vulnerability of the FortiOS operating system arises from insufficient protection of the web page structure, allowing attackers to inject arbitrary JavaScript or HTML code.

The vulnerability of the FortiOS operating system arises from insufficient protection of the web page structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary JavaScript or HTML code using a specially crafted HTTP request header named “Host”...

The vulnerability in the FortiOS operating system’s web interface allows a hacker to inject any desired JavaScript or HTML code.

The vulnerability in the FortiOS operating system’s web interface stems from insufficient protection of the web page structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary JavaScript or HTML code during the activation of FortiToken using the “action” parameter...

The vulnerability in the FortiOS operating system’s web interface arises from the lack of protective measures for the web page structure, allowing attackers to inject arbitrary JavaScript or HTML code.

The vulnerability in the FortiOS operating system’s web interface arises from insufficient protection of the web page structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary JavaScript or HTML code using a specially crafted value for the “redir” parameter...

The vulnerability in the FortiOS operating system’s web portal allows a hacker to expose user credentials.

The vulnerability of the FortiOS operating system’s web portal relates to the storage of user credentials in an exposed manner. Exploiting this vulnerability allows a malicious actor to disclose user credentials remotely...

The vulnerability in the implementation of the TLS protocol in the FortiOS operating system allows a attacker to decrypt messages without knowing the secret key, thereby carrying out a “man-in-the-middle” attack.

Vulnerability of the TLS protocol implementation in the FortiOS operating system, caused by deficiencies in the implementation of the encryption algorithm. Exploiting this vulnerability allows a malicious actor to decrypt messages without knowing the secret key, thereby carrying out a...