Lucene search
K

25 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-28521

Malicious code in bioql PyPI...

4.4CVSS5AI score0.00208EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-37466

Malicious code in bioql PyPI...

8.1CVSS8.1AI score0.00434EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:52 a.m.9 views

CVE-2023-33303

A insufficient session expiration in Fortinet FortiEDR version 5.0.0 through 5.0.1 allows attacker to execute unauthorized code or commands via api request...

8.1CVSS7.5AI score0.00434EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:44 p.m.7 views

CVE-2022-29057

A improper neutralization of input during web page generation 'cross-site scripting' in Fortinet FortiEDR version 5.1.0, 5.0.0 through 5.0.3 Patch 6 and 4.0.0 allows a remote authenticated attacker to perform a reflected cross site scripting attack XSS by injecting malicious payload into the...

5.4CVSS5.7AI score0.00493EPSS
Exploits0References1
CNVD
CNVD
added 2024/09/12 12:0 a.m.5 views

Fortinet FortiEDR Access Control Error Vulnerability (CNVD-2025-00410)

Fortinet FortiEDR is an endpoint security solution built from the ground up by Fortinet. Fortinet FortiEDR suffers from an Access Control Error vulnerability that stems from incorrect access control. An attacker could exploit the vulnerability to obtain sensitive information...

4.3CVSS6.6AI score0.00363EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/10 12:0 a.m.4 views

Fortinet FortiEDR 访问控制错误漏洞

Fortinet FortiEDR is an endpoint security solution built from the ground up by Fortinet. Fortinet FortiEDR suffers from an Access Control Error vulnerability that stems from incorrect access control. An attacker could exploit the vulnerability to obtain sensitive information...

4.3CVSS6.6AI score0.00363EPSS
Exploits0References2
CNVD
CNVD
added 2023/11/17 12:0 a.m.27 views

Fortinet FortiEDR Access Control Error Vulnerability (CNVD-2023-98184)

Fortinet FortiEDR is an endpoint security solution built from the ground up by Fortinet. An Access Control Error vulnerability exists in Fortinet FortiEDR Collector Windows that stems from the presence of improper access controls in the application. A local attacker could exploit the vulnerabilit...

5.5CVSS6.6AI score0.00174EPSS
Exploits0References1
CNVD
CNVD
added 2023/10/17 12:0 a.m.7 views

Fortinet FortiEDR Access Control Error Vulnerability

Fortinet FortiEDR is an endpoint security solution built from the ground up by Fortinet. Fortinet FortiEDR suffers from an Access Control Error vulnerability that stems from insufficient handling of session expiration times, which can be exploited by an attacker to execute unauthorized code or...

8.1CVSS7.5AI score0.00434EPSS
Exploits0References1
NVD
NVD
added 2023/10/13 3:15 p.m.16 views

CVE-2023-33303

A insufficient session expiration in Fortinet FortiEDR version 5.0.0 through 5.0.1 allows attacker to execute unauthorized code or commands via api request...

8.1CVSS8.3AI score0.00434EPSS
Exploits0References1
Prion
Prion
added 2023/10/13 3:15 p.m.17 views

Design/Logic Flaw

A insufficient session expiration in Fortinet FortiEDR version 5.0.0 through 5.0.1 allows attacker to execute unauthorized code or commands via api request...

5.1CVSS8.2AI score0.00434EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/13 2:32 p.m.16 views

CVE-2023-33303

A insufficient session expiration in Fortinet FortiEDR version 5.0.0 through 5.0.1 allows attacker to execute unauthorized code or commands via api request...

8.1CVSS7.5AI score0.00434EPSS
Exploits0References1
CVE
CVE
added 2023/10/13 2:32 p.m.48 views

CVE-2023-33303

Fortinet FortiEDR is affected: FortiEDR 5.0.0–5.0.1 suffers from insufficient session expiration, enabling an attacker to run unauthorized code or commands via API requests. The PT-2023-6014 entry notes the issue, with no fixed version specified and recommends mitigating by restricting API access...

8.1CVSS8.2AI score0.00434EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/10/13 12:0 a.m.5 views

PT-2023-6014 · Fortinet · Fortiedr

Name of the Vulnerable Software and Affected Versions: Fortinet FortiEDR versions 5.0.0 through 5.0.1 Description: The issue is related to insufficient session expiration in Fortinet FortiEDR, which can be exploited by an attacker to execute unauthorized code or commands via an API request. This...

9.3CVSS8.2AI score0.00434EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/10/13 12:0 a.m.5 views

Fortinet FortiEDR 代码问题漏洞

Fortinet FortiEDR is an endpoint security solution built from the ground up by Fortinet. Fortinet FortiEDR suffers from an Access Control Error vulnerability that stems from insufficient handling of session expiration times, which can be exploited by an attacker to execute unauthorized code or...

8.1CVSS7.4AI score0.00434EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/11/02 12:0 a.m.4 views

Fortinet FortiEDR 安全漏洞

Fortinet FortiEDR is a built-from-scratch endpoint security solution from Fortinet, Inc. A security vulnerability exists in Fortinet FortiEDR CollectorWindows versions 4.0.0 through 4.1, 5.0.0 through 5.0.3.751, and 5.1.0 that stems from improper control of resources...

5.5CVSS5.7AI score0.00174EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/07/19 2:15 p.m.1 views

CVE-2022-29057

A improper neutralization of input during web page generation 'cross-site scripting' in Fortinet FortiEDR version 5.1.0, 5.0.0 through 5.0.3 Patch 6 and 4.0.0 allows a remote authenticated attacker to perform a reflected cross site scripting attack XSS by injecting malicious payload into the...

5.4CVSS5.6AI score0.00493EPSS
Exploits0References2
Prion
Prion
added 2022/07/19 2:15 p.m.17 views

Cross site scripting

A improper neutralization of input during web page generation 'cross-site scripting' in Fortinet FortiEDR version 5.1.0, 5.0.0 through 5.0.3 Patch 6 and 4.0.0 allows a remote authenticated attacker to perform a reflected cross site scripting attack XSS by injecting malicious payload into the...

4.9CVSS5.1AI score0.00493EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2022/04/08 12:0 a.m.14 views

Fortinet FortiEDR Denial of Service Vulnerability

Fortinet FortiEDR is a scratch-built endpoint security solution from Fortinet, U.S.A. A denial-of-service vulnerability exists in Fortinet FortiEDR versions 5.0.3 and earlier, which stems from a resource management error that could be exploited by an attacker to make an entire application...

4.4CVSS3.8AI score0.00208EPSS
Exploits0References1
CNVD
CNVD
added 2022/04/08 12:0 a.m.12 views

Fortinet FortiEDR Trust Management Issue Vulnerability

Fortinet FortiEDR is a scratch-built endpoint security solution from Fortinet, U.S.A. Fortinet FortiEDR is vulnerable to a trust management issue that could be exploited by an unauthenticated attacker to disguise and spoof messages from other collectors...

9.1CVSS3.2AI score0.00897EPSS
Exploits0References1
CNVD
CNVD
added 2022/04/08 12:0 a.m.22 views

Fortinet FortiEDR Trust Management Issue Vulnerability (CNVD-2022-47976)

Fortinet FortiEDR is a scratch-built endpoint security solution from Fortinet U.S.A. Fortinet FortiEDR is vulnerable to a trust management issue that stems from the use of hard-coded encrypted RSA keys, which can be exploited by local attackers to disable and offload collectors from endpoints in...

7.8CVSS2.8AI score0.0019EPSS
Exploits0References1
Rows per page
Query Builder