Lucene search
K

136 matches found

OSV
OSV
added 2024/06/11 3:16 p.m.2 views

CVE-2024-26010

A stack-based buffer overflow in Fortinet FortiPAM version 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiWeb, FortiAuthenticator, FortiSwitchManager version 7.2.0 through 7.2.3, 7.0.1 through 7.0.3, FortiOS version 7.4.0 through 7.4.3, 7.2.0 through 7.2.7, 7.0.0 through 7.0.14, 6.4.0...

7.5CVSS7.6AI score0.00786EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/11 2:32 p.m.85 views

CVE-2024-26010

A stack-based buffer overflow in Fortinet FortiPAM version 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiWeb, FortiAuthenticator, FortiSwitchManager version 7.2.0 through 7.2.3, 7.0.1 through 7.0.3, FortiOS version 7.4.0 through 7.4.3, 7.2.0 through 7.2.7, 7.0.0 through 7.0.14, 6.4.0...

7.5CVSS0.00786EPSS
Exploits0References1
CVE
CVE
added 2024/06/11 2:32 p.m.93 views

CVE-2024-26010

CVE-2024-26010 is a stack-based buffer overflow affecting multiple Fortinet products (FortiPAM, FortiWeb, FortiAuthenticator, FortiSwitchManager, FortiOS, FortiProxy, etc.) across many versions. The underlying flaw allows an attacker to execute unauthorized code or commands via specially crafted ...

7.5CVSS8AI score0.00786EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/06/11 12:0 a.m.3 views

PT-2024-4150 · Fortinet · Fortiswitchmanager +5

Name of the Vulnerable Software and Affected Versions: FortiPAM versions 1.0.0 through 1.1.2 FortiPAM version 1.2.0 FortiWeb affected versions not specified FortiAuthenticator affected versions not specified FortiSwitchManager versions 7.0.1 through 7.2.3 FortiOS versions 6.0.0 through 7.4.3...

7.6CVSS8.5AI score0.00786EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/06/11 12:0 a.m.5 views

Multiple Fortinet products Security vulnerabilities

Fortinet FortiAuthenticator and others are products of Fortinet, Inc.Fortinet FortiAuthenticator is a centralized user identity management solution.Fortinet FortiSwitchManager is a network switch Fortinet FortiSwitchManager is a network switch management tool designed to help organizations manage...

7.5CVSS7.4AI score0.00786EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/05/17 12:0 a.m.7 views

The vulnerabilities of the FortiOS command-line interpreter, the FortiSwitchManager local management platform, and the FortiProxy proxy server for protecting against internet attacks allow attackers to execute arbitrary code.

The vulnerability of the FortiOS command-line interpreter, the local management platform FortiSwitchManager, and the FortiProxy proxy server for protecting against Internet attacks is related to the use of uncontrolled format strings in processing binary files. Exploiting this vulnerability allow...

6.7CVSS6AI score0.00654EPSS
Exploits0References2Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/05/17 12:0 a.m.7 views

The vulnerabilities of the FortiOS command-line interpreter, the FortiSwitchManager local management platform, and the FortiProxy proxy server for protecting against internet attacks allow attackers to execute arbitrary code.

The vulnerability of the FortiOS command-line interpreter, the local management platform FortiSwitchManager, and the FortiProxy proxy server for protecting against internet attacks is related to the use of an uncontrolled format string. Exploiting this vulnerability allows an attacker to execute...

6.7CVSS6AI score0.00276EPSS
Exploits0References2Affected Software4
NVD
NVD
added 2024/05/14 5:15 p.m.26 views

CVE-2023-45583

A use of externally-controlled format string vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiOS 6.2 all versions, FortiOS 6.0.0 through 6.0.16, FortiPAM 1.1.0, FortiPAM 1.0 all versions, FortiProxy 7.2.0 through 7.2.5,...

7.2CVSS6.9AI score0.00654EPSS
Exploits0References1
OSV
OSV
added 2024/05/14 5:15 p.m.4 views

CVE-2023-45583

A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.5, 7.0.0 through 7.0.11, 2.0.0 through 2.0.13, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6 FortiPAM versions 1.1.0, 1.0.0 through 1.0.3 FortiOS versions 7.4.0, 7.2.0 through 7.2.5, 7.0.0 through 7.0.13,...

7.2CVSS5.9AI score0.00654EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/14 4:19 p.m.28 views

CVE-2023-45583

A use of externally-controlled format string vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiOS 6.2 all versions, FortiOS 6.0.0 through 6.0.16, FortiPAM 1.1.0, FortiPAM 1.0 all versions, FortiProxy 7.2.0 through 7.2.5,...

6.7CVSS7.4AI score0.00654EPSS
Exploits0References1
CVE
CVE
added 2024/05/14 4:19 p.m.81 views

CVE-2023-45583

The CVE-2023-45583 vulnerability is a use of externally-controlled format string affecting Fortinet FortiProxy, FortiPAM, FortiOS, and FortiSwitchManager across multiple versions (e.g., FortiProxy 7.2.0–7.2.5, 7.0.x, 2.0.x, 1.x; FortiOS 7.x and 6.x; FortiPAM 1.x; FortiSwitchManager 7.x). The unde...

7.2CVSS6.8AI score0.00654EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/14 4:19 p.m.19 views

CVE-2023-45583

A use of externally-controlled format string vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiOS 6.2 all versions, FortiOS 6.0.0 through 6.0.16, FortiPAM 1.1.0, FortiPAM 1.0 all versions, FortiProxy 7.2.0 through 7.2.5,...

6.7CVSS6.8AI score0.00654EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/05/14 12:0 a.m.7 views

PT-2024-3560

Name of the Vulnerable Software and Affected Versions FortiProxy versions 1.1.0 through 1.2.13 FortiProxy versions 2.0.0 through 2.0.13 FortiProxy versions 7.0.0 through 7.2.5 FortiPAM versions 1.0.0 through 1.1.0 FortiOS versions 6.2.0 through 7.4.0 FortiSwitchManager versions 7.0.0 through 7.2....

7.2CVSS6.8AI score0.00654EPSS
Exploits0References8
OSV
OSV
added 2024/02/15 2:15 p.m.4 views

CVE-2024-23113

A use of externally-controlled format string in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, FortiProxy versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14, FortiPAM versions 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3,...

9.8CVSS7.4AI score0.61725EPSS
Exploits8References2
Vulnrichment
Vulnrichment
added 2024/02/15 1:59 p.m.54 views

CVE-2024-23113

A use of externally-controlled format string in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, FortiProxy versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14, FortiPAM versions 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3,...

9.8CVSS7.3AI score0.61725EPSS
Exploits8References1
CVE
CVE
added 2024/02/15 1:59 p.m.467 views

CVE-2024-23113

CVE-2024-23113 is a format-string vulnerability in Fortinet FortiOS, FortiProxy, FortiPAM, and FortiSwitchManager. An attacker can trigger remote code execution by sending specially crafted packets that influence format-string processing in affected components. Affected versions include FortiOS 7...

9.8CVSS9.5AI score0.61725EPSS
In wildExploits8References2Affected Software4
Positive Technologies
Positive Technologies
added 2024/02/08 12:0 a.m.6 views

PT-2024-1569

Name of the Vulnerable Software and Affected Versions Fortinet FortiOS versions 7.0.0 through 7.0.13 Fortinet FortiOS versions 7.2.0 through 7.2.6 Fortinet FortiOS versions 7.4.0 through 7.4.2 FortiProxy versions 7.0.0 through 7.0.14 FortiProxy versions 7.2.0 through 7.2.8 FortiProxy versions 7.4...

10CVSS8.4AI score0.61725EPSS
Exploits8References177
GithubExploit
GithubExploit
added 2023/09/14 9:29 p.m.399 views

Exploit for Improper Authentication in Fortinet Fortiproxy

CVE-2022-40684 CVE-2022-40684 - Auth bypass - Run exploit...

9.8CVSS9.1AI score0.99984EPSS
Exploits25
CNVD
CNVD
added 2023/09/08 12:0 a.m.7 views

Fortinet FortiSwitchManager Improper Access Control Vulnerability

Fortinet FortiSwitchManager is a network switch management tool from Fortinet designed to help organizations manage their FortiSwitch family of network switches. An improper access control vulnerability exists in Fortinet FortiSwitchManager. The vulnerability is caused by a flawed authentication...

7.1CVSS6.8AI score0.00382EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/09/08 12:0 a.m.6 views

The vulnerability of the local management platform FortiSwitchManager, related to errors in access control, allows a attacker to modify settings by sending commands through the application programming interface.

The vulnerability of the FortiSwitchManager local management platform is related to errors in access control. Exploiting this vulnerability allows a malicious actor to make changes to settings by sending commands through the application programming interface...

7.5CVSS5.5AI score0.00382EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder