4 matches found
CVE-2024-50568
A channel accessible by non-endpoint vulnerability CWE-300 in Fortinet FortiOS version 7.4.0 through 7.4.3, 7.2.0 through 7.2.7 and before 7.0.14 & FortiProxy version 7.4.0 through 7.4.3, 7.2.0 through 7.2.9 and before 7.0.16 allows an unauthenticated attacker with the knowledge of device specifi...
CVE-2024-50568
A channel accessible by non-endpoint vulnerability CWE-300 in Fortinet FortiOS version 7.4.0 through 7.4.3, 7.2.0 through 7.2.7 and before 7.0.14 & FortiProxy version 7.4.0 through 7.4.3, 7.2.0 through 7.2.9 and before 7.0.16 allows an unauthenticated attacker with the knowledge of device specifi...
CVE-2024-50568
CVE-2024-50568 affects Fortinet FortiOS and FortiProxy: a non-endpoint channel vulnerability (CWE-300) allows an unauthenticated attacker with device-specific data to spoof the identity of a downstream device in the security fabric via crafted TCP requests. Affected versions include FortiOS 7.0.0...
Fortinet Fortigate Weak authentication in security fabric daemon (FG-IR-24-058)
The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-058 advisory. - A channel accessible by non-endpoint vulnerability CWE-300 in Fortinet FortiOS version 7.4.0 through 7.4.3, 7.2.0 through...