Lucene search
K

35 matches found

Cvelist
Cvelist
added 2024/11/12 6:53 p.m.41 views

CVE-2024-32116

Multiple relative path traversal vulnerabilities CWE-23 in Fortinet FortiManager version 7.4.0 through 7.4.2 and before 7.2.5, FortiAnalyzer version 7.4.0 through 7.4.2 and before 7.2.5 and FortiAnalyzer-BigData version 7.4.0 and before 7.2.7 allows a privileged attacker to delete files from the...

5.1CVSS0.00238EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/12 6:53 p.m.13 views

CVE-2024-32116

Multiple relative path traversal vulnerabilities CWE-23 in Fortinet FortiManager version 7.4.0 through 7.4.2 and before 7.2.5, FortiAnalyzer version 7.4.0 through 7.4.2 and before 7.2.5 and FortiAnalyzer-BigData version 7.4.0 and before 7.2.7 allows a privileged attacker to delete files from the...

5.1CVSS6.9AI score0.00238EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/05/22 12:0 a.m.37 views

Fortinet Fortigate - Path traversal vulnerability allows VDOM escaping (FG-IR-22-401)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-401 advisory. - A relative path traversal vulnerability CWE-23 in Fortinet FortiOS version 7.2.0 through 7.2.2, 7.0.0 through 7.0.8 and...

8.2CVSS7.7AI score0.00217EPSS
Exploits0References2
NVD
NVD
added 2023/11/14 7:15 p.m.20 views

CVE-2023-29177

Multiple buffer copy without checking size of input 'classic buffer overflow' vulnerabilities CWE-120 in FortiADC version 7.2.0 and before 7.1.2 & FortiDDoS-F version 6.5.0 and before 6.4.1 allows a privileged attacker to execute arbitrary code or commands via specifically crafted CLI requests...

6.7CVSS0.00244EPSS
Exploits0References1
Prion
Prion
added 2023/11/14 7:15 p.m.18 views

Buffer overflow

Multiple buffer copy without checking size of input 'classic buffer overflow' vulnerabilities CWE-120 in FortiADC version 7.2.0 and before 7.1.2 & FortiDDoS-F version 6.5.0 and before 6.4.1 allows a privileged attacker to execute arbitrary code or commands via specifically crafted CLI requests...

4CVSS8.3AI score0.00244EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2023/11/14 6:7 p.m.11 views

CVE-2023-29177

Multiple buffer copy without checking size of input 'classic buffer overflow' vulnerabilities CWE-120 in FortiADC version 7.2.0 and before 7.1.2 & FortiDDoS-F version 6.5.0 and before 6.4.1 allows a privileged attacker to execute arbitrary code or commands via specifically crafted CLI requests...

6.7CVSS8.1AI score0.00244EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/11/14 6:7 p.m.19 views

CVE-2023-29177

Multiple buffer copy without checking size of input 'classic buffer overflow' vulnerabilities CWE-120 in FortiADC version 7.2.0 and before 7.1.2 & FortiDDoS-F version 6.5.0 and before 6.4.1 allows a privileged attacker to execute arbitrary code or commands via specifically crafted CLI requests...

6.7CVSS7.2AI score0.00244EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/06/13 8:41 a.m.11 views

CVE-2023-26210

Multiple improper neutralization of special elements used in an os command 'OS Command Injection' vulnerabilties CWE-78 vulnerability in Fortinet allows a local authenticated attacker to execute arbitrary shell code as root user via crafted CLI requests...

7.8CVSS7.6AI score0.00496EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/06/13 8:41 a.m.33 views

CVE-2023-26210

Multiple improper neutralization of special elements used in an os command 'OS Command Injection' vulnerabilties CWE-78 vulnerability in Fortinet allows a local authenticated attacker to execute arbitrary shell code as root user via crafted CLI requests...

7.8CVSS8.1AI score0.00496EPSS
Exploits0References1
Fortinet
Fortinet
added 2023/06/12 12:0 a.m.52 views

FortiADC & FortiADC Manager - Command injection vulnerabilities in cli commands

Multiple improper neutralization of special elements used in an os command 'OS Command Injection' vulnerabilties CWE-78 in FortiADC & FortiADC Manager may allow a local authenticated attacker to execute arbitrary shell code as root user via crafted CLI requests...

4.3CVSS7.5AI score0.00496EPSS
Exploits0Affected Software2
Tenable Nessus
Tenable Nessus
added 2023/03/15 12:0 a.m.35 views

Fortinet FortiOS - Path Traversal Vulnerability (FG-IR-22-401)

The version of FortiOS installed on the remote host is affected by a path traversal vulnerability. A relative path traversal vulnerability CWE-23 in FortiOS and FortiProxy may allow privileged VDOM administrators to escalate their privileges to super admin of the box via crafted CLI requests. Not...

8.2CVSS7.7AI score0.00217EPSS
Exploits0References2
NVD
NVD
added 2023/03/07 5:15 p.m.26 views

CVE-2022-42476

A relative path traversal vulnerability CWE-23 in Fortinet FortiOS version 7.2.0 through 7.2.2, 7.0.0 through 7.0.8 and before 6.4.11, FortiProxy version 7.2.0 through 7.2.2 and 7.0.0 through 7.0.8 allows privileged VDOM administrators to escalate their privileges to super admin of the box via...

8.2CVSS8.2AI score0.00217EPSS
Exploits0References1
Prion
Prion
added 2023/03/07 5:15 p.m.24 views

Path traversal

A relative path traversal vulnerability CWE-23 in Fortinet FortiOS version 7.2.0 through 7.2.2, 7.0.0 through 7.0.8 and before 6.4.11, FortiProxy version 7.2.0 through 7.2.2 and 7.0.0 through 7.0.8 allows privileged VDOM administrators to escalate their privileges to super admin of the box via...

4CVSS8.1AI score0.00217EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2023/03/07 4:21 p.m.34 views

CVE-2022-42476

A relative path traversal vulnerability CWE-23 in Fortinet FortiOS version 7.2.0 through 7.2.2, 7.0.0 through 7.0.8 and before 6.4.11, FortiProxy version 7.2.0 through 7.2.2 and 7.0.0 through 7.0.8 allows privileged VDOM administrators to escalate their privileges to super admin of the box via...

8.2CVSS6.9AI score0.00217EPSS
Exploits0References1
Fortinet
Fortinet
added 2023/03/07 12:0 a.m.63 views

Protect

A relative path traversal vulnerability CWE-23 in FortiOS and FortiProxy may allow privileged VDOM administrators to escalate their privileges to super admin of the box via crafted CLI requests...

4CVSS7.9AI score0.00217EPSS
Exploits0Affected Software2
Rows per page
Query Builder