EUVD-2025-34233

An improper authentication vulnerability CWE-287 in Fortinet FortiAnalyzer version 7.6.0 through 7.6.3 and before 7.4.6 allows an unauthenticated attacker to obtain information pertaining to the device's health and status, or cause a denial of service via crafted OFTP requests...

Fortinet FortiAnalyzer 授权问题漏洞

FortiAnalyzer is Fortinet's centralized security analysis and reporting platform. A security vulnerability exists in FortiAnalyzer that stems from a flaw in the authentication mechanism for OFTP requests. An attacker can exploit this vulnerability to obtain device operational status information o...

Open TFTP Server Formatting String Error Vulnerability

Open TFTP Server MT is a file transfer server. A formatting string error vulnerability exists in the 'logMess' function in Open TFTP Server MT version 1.65 and earlier. The vulnerability stems from a network system or product that receives external formatted strings as parameters with lax filteri...

Open TFTP Server SP 'logMess' Function Buffer Overflow Vulnerability

Open TFTP Server SP is a file transfer server. A buffer overflow vulnerability exists in the 'logMess' function in Open TFTP Server SP version 1.66 and earlier. The vulnerability originates when a network system or product performs an operation in memory without properly validating data boundarie...