CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

130 matches found

RedhatCVE•added 2026/05/12 2:21 p.m.•3 views

CVE-2025-61624

An Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' CWE-22 vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4, FortiOS 7.4.0 through 7.4.9, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiPAM 1.7.0, FortiPAM 1.6 all versions,...

6.5CVSS5.9AI score0.00093EPSS

Exploits0References1

Vulnrichment•added 2026/04/14 3:39 p.m.•0 views

CVE-2025-61624

6CVSS5.9AI score0.00093EPSS

Exploits0References1

Tenable Nessus•added 2026/04/14 12:0 a.m.•1 views

Fortinet Fortigate Path Traversal in CLI (FG-IR-26-122)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-26-122 advisory. - An Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' CWE-22 vulnerability in Fortinet FortiOS...

6.5CVSS5.9AI score0.00093EPSS

Exploits0References2

Positive Technologies•added 2026/04/14 12:0 a.m.•0 views

PT-2026-32652

6CVSS5.9AI score0.00093EPSS

Exploits0References3

NCSC•added 2026/01/28 3:46 p.m.•14 views

Vulnerabilities fixed in Fortinet products

Fortinet has fixed vulnerabilities in FortiOS, FortiProxy, FortiWeb and FortiSwitchManager. The vulnerabilities allow unauthenticated attackers to gain access to systems by using various techniques, including bypassing FortiCloud SSO login authentication via specially crafted SAML messages,...

9.8CVSS7.6AI score0.09485EPSS

Exploits1References9

RedhatCVE•added 2026/01/14 5:22 p.m.•3 views

CVE-2025-25249

A heap-based buffer overflow vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0.0 through 7.0.17, FortiOS 6.4 all versions, FortiSwitchManager 7.2.0 through 7.2.6, FortiSwitchManager 7.0.0 through 7.0.5 allows attacker to...

9.8CVSS6AI score0.00016EPSS

Exploits1References1

OSV•added 2026/01/13 5:15 p.m.•0 views

CVE-2025-25249

9.8CVSS6.2AI score

Exploits0References1

Vulnrichment•added 2026/01/13 4:32 p.m.•4 views

CVE-2025-25249

8.1CVSS6AI score0.00016EPSS

Exploits1References1

EUVD•added 2026/01/13 4:32 p.m.•5 views

EUVD-2026-2223

A heap-based buffer overflow vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0.0 through 7.0.17, FortiOS 6.4.0 through 6.4.16, FortiSASE 25.2.b, FortiSASE 25.1.a.2, FortiSwitchManager 7.2.0 through 7.2.6, FortiSwitchManag...

8.1CVSS7.4AI score0.00016EPSS

Exploits1References2

Cvelist•added 2026/01/13 4:32 p.m.•21 views

CVE-2025-25249

8.1CVSS0.00016EPSS

Exploits1References1

CVE•added 2026/01/13 4:32 p.m.•179 views

CVE-2025-25249

CVE-2025-25249 is a heap-based buffer overflow in Fortinet FortiOS and FortiSwitchManager cw_acd daemon, allowing remote unauthenticated code execution via specially crafted packets. Affected FortiOS versions: 6.4.0–6.4.16; 7.0.0–7.0.17; 7.2.0–7.2.11; 7.4.0–7.4.8; 7.6.0–7.6.3. Affected FortiSwitc...

9.8CVSS6AI score0.00016EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2026/01/13 12:0 a.m.•8 views

PT-2026-2448

Name of the Vulnerable Software and Affected Versions Fortinet FortiOS versions 6.4.0 through 6.4.16 Fortinet FortiOS versions 7.0.0 through 7.0.17 Fortinet FortiOS versions 7.2.0 through 7.2.11 Fortinet FortiOS versions 7.4.0 through 7.4.8 Fortinet FortiOS versions 7.6.0 through 7.6.3...

9.8CVSS6.3AI score0.00016EPSS

Exploits1References21

CNNVD•added 2026/01/13 12:0 a.m.•3 views

Fortinet多款产品缓冲区错误漏洞

Fortinet FortiOS and others are products of Fortinet, Inc.Fortinet FortiOS is a dedicated security operating system on the FortiGate network security platform.Fortinet FortiSwitchManager is a network switch management tool designed to help organizations manage Fortinet FortiSwitchManager is a...

9.8CVSS6.2AI score0.00016EPSS

Exploits1References2

Rapid7 Blog•added 2025/12/17 9:0 p.m.•32 views

Critical vulnerabilities in Fortinet CVE-2025-59718, CVE-2025-59719, CVE-2026-24858 exploited in the wild

Overview Update for CVE-2026-24858: On January 27, 2026, Fortinet disclosedCVE-2026-24858 , a critical unauthenticated vulnerability allowing authentication bypass via Fortinet’s cloud SSO. Confirmed as a net-new vulnerability rather than a patch bypass, it has beenobserved under active zero-day...

9.8CVSS7.8AI score0.09485EPSS

Exploits1

VulnCheck KEV•added 2025/12/15 12:0 a.m.•0 views

VulnCheck KEV: CVE-2025-59718

A improper verification of cryptographic signature vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0.0 through 7.0.17, FortiProxy 7.6.0 through 7.6.3, FortiProxy 7.4.0 through 7.4.10, FortiProxy 7.2.0 through 7.2.14,...

9.8CVSS5.8AI score0.09485EPSS

In wildExploits1References16

RedhatCVE•added 2025/12/10 6:13 p.m.•5 views

CVE-2025-59718

9.8CVSS7.1AI score0.09485EPSS

Exploits1References1

OSV•added 2025/12/09 6:15 p.m.•0 views

CVE-2025-59718

9.8CVSS5.8AI score0.09485EPSS

Exploits1References3

NVD•added 2025/12/09 6:15 p.m.•15 views

CVE-2025-59718

9.8CVSS0.09485EPSS

Exploits1References3

ATTACKERKB•added 2025/12/09 5:20 p.m.•3 views

CVE-2025-59718

9.8CVSS5.8AI score0.09485EPSS

In wildExploits1References2Affected Software3

CVE•added 2025/12/09 5:20 p.m.•338 views

CVE-2025-59718

CVE-2025-59718/59719 describe an improper verification of cryptographic signatures that allows an unauthenticated attacker to bypass Fortinet FortiCloud SSO login via a crafted SAML response. Affected products span FortiOS (multiple versions up to 7.6.3, and earlier lines listed), FortiProxy, For...

9.8CVSS6.7AI score0.09485EPSS

In wildExploits1References3Affected Software3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by