20 matches found
CVE-2024-40593
A key management errors vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.2, FortiAnalyzer 7.2.0 through 7.2.5, FortiAnalyzer 7.0 all versions, FortiAnalyzer 6.4 all versions, FortiManager 7.4.0 through 7.4.2, FortiManager 7.2.0 through 7.2.5, FortiManager 7.0 all versions, FortiManager 6...
CVE-2024-40593
A key management errors vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.2, FortiAnalyzer 7.2.0 through 7.2.5, FortiAnalyzer 7.0 all versions, FortiAnalyzer 6.4 all versions, FortiManager 7.4.0 through 7.4.2, FortiManager 7.2.0 through 7.2.5, FortiManager 7.0 all versions, FortiManager 6...
CVE-2024-40593
CVE-2024-40593 affects Fortinet FortiAnalyzer, FortiManager, FortiOS and FortiPortal products across multiple versions (notably FortiAnalyzer 6.4, 7.0, 7.2.x, 7.4.x; FortiManager 6.4, 7.0, 7.2.x, 7.4.x; FortiOS 7.x; FortiPortal 6.0). The vulnerability is a key management error that may allow an a...
EUVD-2024-55320
A key management errors vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.2, FortiAnalyzer 7.2.0 through 7.2.5, FortiAnalyzer 7.0 all versions, FortiAnalyzer 6.4 all versions, FortiManager 7.4.0 through 7.4.2, FortiManager 7.2.0 through 7.2.5, FortiManager 7.0 all versions, FortiManager 6...
CVE-2024-40593
A key management errors vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.2, FortiAnalyzer 7.2.0 through 7.2.5, FortiAnalyzer 7.0 all versions, FortiAnalyzer 6.4 all versions, FortiManager 7.4.0 through 7.4.2, FortiManager 7.2.0 through 7.2.5, FortiManager 7.0 all versions, FortiManager 6...
PT-2025-50607
A key management errors vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.2, FortiAnalyzer 7.2.0 through 7.2.5, FortiAnalyzer 7.0 all versions, FortiAnalyzer 6.4 all versions, FortiManager 7.4.0 through 7.4.2, FortiManager 7.2.0 through 7.2.5, FortiManager 7.0 all versions, FortiManager 6...
Fortinet多款产品 加密问题漏洞
Fortinet FortiOS and others are products of Fortinet, Inc. Fortinet FortiOS is a dedicated security operating system on the FortiGate network security platform.Fortinet FortiManager is a centralized network security management platform.Fortinet FortiAnalyzer is a centralized network security...
Fortinet FortiAnalyzer Private key readable by admin (FG-IR-24-133)
The version of FortiAnalyzer installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-133 advisory. - A key management error vulnerability CWE-320 in FortiManager, FortiAnalyzer and FortiPortal may allow an authenticated...
Fortinet Fortigate Private key readable by admin (FG-IR-24-133)
The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-133 advisory. - A key management error vulnerability CWE-320 in FortiManager, FortiAnalyzer and FortiPortal may allow an authenticated admi...
CVE-2025-56463
Mercusys MW305R 3.30 and below is has a Transport Layer Security TLS certificate private key disclosure...
CVE-2025-56463
Mercusys MW305R routers with firmware version 3.30 and earlier are affected by a flaw that leads to TLS certificate private key disclosure. Root cause: an issue in the device firmware that allows private key exposure. Impact areas documented include confidentiality, integrity, and availability as...
CVE-2024-40585
An insertion of sensitive information into log file vulnerabilities CWE-532 in FortiManager version 7.4.0, version 7.2.3 and below, version 7.0.8 and below, version 6.4.12 and below, version 6.2.11 and below and FortiAnalyzer version 7.4.0, version 7.2.3 and below, version 7.0.8 and below, versio...
CVE-2024-40585
An insertion of sensitive information into log file vulnerabilities CWE-532 in FortiManager version 7.4.0, version 7.2.3 and below, version 7.0.8 and below, version 6.4.12 and below, version 6.2.11 and below and FortiAnalyzer version 7.4.0, version 7.2.3 and below, version 7.0.8 and below, versio...
CVE-2024-40585
CVE-2024-40585 affects Fortinet FortiManager and FortiAnalyzer: multiple older/fixed releases (FortiManager 7.4.0, 7.2.3 and below, 7.0.8 and below, 6.4.12 and below, 6.2.11 and below; FortiAnalyzer 7.4.0, 7.2.3 and below, 7.0.8 and below, 6.4.12 and below, 6.2.11 and below) contain a vulnerabili...
CVE-2020-11792
NETGEAR R8900, R9000, RAX120, and XR700 devices before 2020-01-20 are affected by Transport Layer Security TLS certificate private key disclosure...
CVE-2022-40234
Versions of IBM Spectrum Protect Plus prior to 10.1.12 excluding 10.1.12 include the private key information for a certificate inside the generated .crt file when uploading a TLS certificate to IBM Spectrum Protect Plus. If this generated .crt file is shared, an attacker can obtain the private ke...
CVE-2022-36956
In Veritas NetBackup, the NetBackup Client allows arbitrary command execution from any remote host that has access to a valid host-id NetBackup certificate/private key from the same domain. The affects 9.0.x through 9.0.0.1 and 9.1.x through 9.1.0.1...
Watchguard WatchGuard Firebox 安全漏洞
Watchguard WatchGuard Firebox is a US-based Watchguard company that provides a comprehensive range of Internet security services, from traditional IPS and GAV to Web site/application control and malicious software prevention. A security vulnerability exists in WatchGuard Firebox that allows a...
CVE-2021-37425
Altova MobileTogether Server before 7.3 SP1 allows XXE attacks, such as an InfoSetChanges/Changes attack against /workflowmanagement, or reading mobiletogetherserver.cfg and then reading the certificate and private key...
HP Insight Control For VMware vCenter Server 7.3 Insecure Permissions Vulnerability
HP Insight Control for VMware vCenter Server version 7.3 allows a low privileged attacker to read sensitive information files, decrypt all configuration server passwords, and gain access to the systems which in turn leads to the compromise of the whole infrastructure. / Exploit Title: HP Insight...