Lucene search
+L

15 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/10 12:0 a.m.13 views

Fortinet Fortigate Weak authentication in security fabric daemon (FG-IR-24-058)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-058 advisory. - A channel accessible by non-endpoint vulnerability CWE-300 in Fortinet FortiOS version 7.4.0 through 7.4.3, 7.2.0 through...

5.9CVSS5.6AI score0.00374EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/10 12:0 a.m.10 views

Fortinet Fortigate Privilege escalation in automation-stitch (FG-IR-24-385)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-385 advisory. - AnAuthentication Bypass Using an Alternate Path or Channel vulnerability CWE-288 in FortiOS and FortiProxymay allow an...

6.7CVSS5.6AI score0.00235EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 4:25 p.m.8 views

CVE-2020-15936

A improper input validation in Fortinet FortiGate version 6.4.3 and below, version 6.2.5 and below, version 6.0.11 and below, version 5.6.13 and below allows attacker to disclose sensitive information via SNI Client Hello TLS packets...

4.5CVSS6.3AI score0.00641EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/05/13 12:0 a.m.12 views

Fortinet Fortigate TACACS+ authentication bypass (FG-IR-24-472)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-472 advisory. - A missing authentication for critical function in Fortinet FortiProxy versions 7.6.0 through 7.6.1, FortiSwitchManager...

9.8CVSS5.6AI score0.00804EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/05/13 12:0 a.m.12 views

Fortinet Fortigate DoS in Security Fabric Root (FG-IR-24-388)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-388 advisory. - An integer overflow or wraparound vulnerability CWE-190 in FortiOS Security Fabric may allow a remote unauthenticated...

5.3CVSS5.7AI score0.00662EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/04/08 12:0 a.m.104 views

Fortinet Fortigate LDAP Clear-text credentials retrievable with IP modification (FG-IR-24-111)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-111 advisory. - A storing passwords in a recoverable format in Fortinet FortiOS 7.4.0 through 7.4.8, FortiOS 7.2 all versions, FortiOS 7.0...

4.4CVSS5.6AI score0.00207EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/11 12:0 a.m.17 views

Fortinet Fortigate Stack buffer overflow in fabric service (FG-IR-24-160)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-160 advisory. - A stack-based buffer overflow CWE-121 vulnerability in Fortinet FortiOS version 7.2.4 through 7.2.8 and version 7.4.0 throu...

8.1CVSS6.6AI score0.01006EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/01/14 12:0 a.m.24 views

Fortinet Fortigate Unchecked boundary length causing multiple logic flaws (FG-IR-24-250)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-250 advisory. - An allocation of resources without limits or throttling CWE-770 vulnerability in FortiOS versions 7.6.0, versions 7.4.4...

5.3CVSS8.6AI score0.0068EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/11/12 12:0 a.m.21 views

Fortinet Fortigate - Improper authentication in fgfmd (FG-IR-24-032)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-032 advisory. - A missing authentication for critical function in Fortinet FortiManager version 7.4.0 through 7.4.2, 7.2.0 through 7.2.4,...

9.8CVSS6AI score0.00589EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/29 12:0 a.m.13 views

Fortinet Fortigate ['CSRF'] (FG-IR-20-158)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-20-158 advisory. - An insufficient verification of data authenticity vulnerability CWE-345 in the user interface of FortiProxy verison 2.0.3 a...

8.8CVSS7.7AI score0.00422EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/27 12:0 a.m.14 views

Fortinet Fortigate Heap-based Buffer Overflow in firmware signature verification (FG-IR-21-115)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-21-115 advisory. - A heap-based buffer overflow in the firmware signature verification function of FortiOS versions 7.0.1, 7.0.0, 6.4.0 throug...

8.8CVSS8.5AI score0.0144EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/27 12:0 a.m.12 views

Fortinet Fortigate Buffer Underwrite in firmware verification (FG-IR-21-046)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-21-046 advisory. - A buffer underwrite vulnerability in the firmware verification routine of FortiOS before 7.0.1 may allow an attacker locate...

8.8CVSS8.6AI score0.00761EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/26 12:0 a.m.11 views

Fortinet Fortigate Format string vulnerability in command line interpreter (FG-IR-21-235)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-21-235 advisory. - A format string vulnerability CWE-134 in the command line interpreter of FortiADC version 6.0.0 through 6.0.4, FortiADC...

7.8CVSS7.7AI score0.00202EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/26 12:0 a.m.11 views

Fortinet Fortigate Stack-based buffer overflows via crafted CLI commands (FG-IR-21-206)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-21-206 advisory. - A buffer copy without checking size of input 'classic buffer overflow' in Fortinet FortiAnalyzer version 7.0.2 and below,...

6.7CVSS7.4AI score0.00179EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/04/11 12:0 a.m.5 views

PT-2023-7424 · Fortinet · Fortigate +1

Name of the Vulnerable Software and Affected Versions: FortiGate versions 7.2.3 and below FortiGate versions 7.0.9 and below Description: The issue is related to a permissive list of allowed inputs, which may allow an authenticated SSL-VPN user to bypass the policy via bookmarks in the web portal...

4.3CVSS4.4AI score0.00437EPSS
Exploits0References5
Rows per page
Query Builder