CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

114 matches found

Vulnrichment•added 2026/03/10 4:44 p.m.•2 views

CVE-2026-25972

An improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Fortinet FortiSIEM 7.4.0, FortiSIEM 7.3.0 through 7.3.4 may allow a remote unauthenticated attacker to provide arbitrary data enabling a social engineering attack via spoofed URL parameters...

4.3CVSS5.9AI score0.00326EPSS

Exploits0References1

CVE•added 2026/03/10 4:44 p.m.•7 views

CVE-2026-25972

Fortinet FortiSIEM versions 7.3.0–7.3.4 and 7.4.0 have an improper neutralization of input during web page generation that enables cross-site scripting. An unauthenticated remote attacker can supply arbitrary data via spoofed URL parameters to perform a social engineering attack via the UI. CVSSv...

6.1CVSS5.9AI score0.00326EPSS

Exploits0References1Affected Software1

CNNVD•added 2026/03/10 12:0 a.m.•2 views

Fortinet FortiSIEM 跨站脚本漏洞

Fortinet FortiSIEM is a security information and event management system developed by the American company Fortinet. This system includes features such as asset discovery, workflow automation, and unified management. Versions of Fortinet FortiSIEM ranging from 7.3.0 to 7.3.4 contain a cross-site...

6.1CVSS5.6AI score0.00326EPSS

Exploits0References1

The Hacker News•added 2026/01/19 1:17 p.m.•32 views

⚡ Weekly Recap: Fortinet Exploits, RedLine Clipjack, NTLM Crack, Copilot Attack & More

In cybersecurity, the line between a normal update and a serious incident keeps getting thinner. Systems that once felt reliable are now under pressure from constant change. New AI tools, connected devices, and automated systems quietly create more ways in, often faster than security teams can...

10CVSS9.9AI score0.99999EPSS

Exploits140

GithubExploit•added 2026/01/13 2:2 p.m.•209 views

Exploit for CVE-2025-64155

CVE-2025-64155: Fortinet FortiSIEM Argument Injection to Remot...

9.8CVSS8.7AI score0.42649EPSS

Exploits4

RedhatCVE•added 2026/01/09 8:40 a.m.•6 views

CVE-2022-26119

A improper authentication vulnerability in Fortinet FortiSIEM before 6.5.0 allows a local attacker with CLI access to perform operations on the Glassfish server directly via a hardcoded password...

7.8CVSS6.6AI score0.00195EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:30 a.m.•4 views

CVE-2019-16153

A hard-coded password vulnerability in the Fortinet FortiSIEM database component version 5.2.5 and below may allow attackers to access the device database via the use of static credentials...

9.8CVSS7AI score0.0115EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2019-7959

Malware in sbrugna...

8.8CVSS8.8AI score0.00563EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-45277