6 matches found
Someone Just Leaked Hard-Coded Password Backdoor for Fortinet Firewalls
Are millions of enterprise users, who rely on the next-generation firewalls for protection, actually protected from hackers? Probably Not. Just less than a month after an unauthorized backdoor found in Juniper Networks firewalls, an anonymous security researcher has discovered highly suspicious...
Fortinet FortiOS < 4.3.16 / 5.x < 5.0.8 Multiple Vulnerabilities (FG-IR-14-006)
The remote host is running FortiOS prior to 4.3.16 or 5.x prior to 5.0.8. It is, therefore, affected by the following vulnerabilities : - A flaw exists within the FortiManager service when handling incoming requests. Using a specially crafted request, a remote attacker can exploit this to cause a...
FortiNet FortiGate and FortiWiFi appliances contain multiple vulnerabilities
Overview Fortinet FortiGate and FortiWiFi appliances are susceptible to man-in-the-middle attacks CWE-300 and a heap-based overflow vulnerability CWE-122. Description Fortinet FortiGate and FortiWiFi 4.00.6 and possibly earlier versions are susceptible to man-in-the-middle attacks CWE-300 and a...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-2216. Reason: This candidate is a reservation duplicate of CVE-2014-2216. Notes: All CVE users should reference CVE-2014-2216 instead of this candidate. All references and descriptions in this candidate have been removed to...
CVE-2014-0352
CVE-2014-0352 is rejected/not used; reference CVE-2014-2216 instead.
CVE-2014-2216
The CVE-2014-2216 vulnerability affects Fortinet FortiOS FortiGate devices where the FortiManager protocol service (on FortiOS versions prior to 4.3.16 and prior to 5.0.8 in the 5.0 branch) can be triggered by a crafted request, enabling remote attackers to cause a denial of service and possibly ...