15 matches found
CVE-2025-62439
An Improper Verification of Source of a Communication Channel vulnerability CWE-940 vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4, FortiOS 7.4.0 through 7.4.9, FortiOS 7.2 all versions, FortiOS 7.0 all versions may allow an authenticated user with knowledge of FSSO policy configurations t...
EUVD-2021-12909
Malware in sbrugna...
CVE-2021-26088
An improper authentication vulnerability in FSSO Collector version 5.0.295 and below may allow an unauthenticated user to bypass a FSSO firewall policy and access the protected network via sending specifically crafted UDP login notification packets...
CVE-2021-26088
An improper authentication vulnerability in FSSO Collector version 5.0.295 and below may allow an unauthenticated user to bypass a FSSO firewall policy and access the protected network via sending specifically crafted UDP login notification packets...
Authentication flaw
An improper authentication vulnerability in FSSO Collector version 5.0.295 and below may allow an unauthenticated user to bypass a FSSO firewall policy and access the protected network via sending specifically crafted UDP login notification packets...
CVE-2021-26088
An improper authentication vulnerability in FSSO Collector version 5.0.295 and below may allow an unauthenticated user to bypass a FSSO firewall policy and access the protected network via sending specifically crafted UDP login notification packets...
CVE-2021-26088
An improper authentication vulnerability in FSSO Collector version 5.0.295 and below may allow an unauthenticated user to bypass a FSSO firewall policy and access the protected network via sending specifically crafted UDP login notification packets...
CVE-2021-26088
CVE-2021-26088 affects Fortinet FSSO Collector (versions 5.0.295 and earlier). The vulnerability is improper authentication that can let an unauthenticated user bypass a FSSO firewall policy and access the protected network by sending specially crafted UDP login notification packets. Impact descr...
FSSO Windows DC Agent [FSSO] Insecure communication between DC agent and Collector
An improper authentication vulnerability CWE-287 in FSSO Collector may allow an unauthenticated user to bypass any firewall authentication rule and access the protected network via sending specifically crafted UDP login notification packets...
Fortinet Single Sign On Hello Message Multiple Vulnerabilities - ver 2 (CVE-2015-2281)
Multiple Vulnerabilities exists in Fortinet Single Sign On FSSO. The vulnerabilities are due to a lack of adequate validation of user supplied input when processing HELLO messages. A remote, unauthenticated attacker could exploit these vulnerabilities by sending a specially crafted HELLO message ...
Stack overflow
Stack-based buffer overflow in collectoragent.exe in Fortinet Single Sign On FSSO before build 164 allows remote attackers to execute arbitrary code via a large PROCESSHELLO message to the Message Dispatcher on TCP port 8000...
CVE-2015-2281
Stack-based buffer overflow in collectoragent.exe in Fortinet Single Sign On FSSO before build 164 allows remote attackers to execute arbitrary code via a large PROCESSHELLO message to the Message Dispatcher on TCP port 8000...
Fortinet Single Sign On Stack Overflow
Advisory Information Title: Fortinet Single Sign On Stack Overflow Advisory ID: CORE-2015-0006 Advisory URL: http://www.coresecurity.com/advisories/fortinet-single-sign-on-stack-overflow Date published: 2015-03-18 Date of last update: 2015-03-18 Vendors contacted: Fortinet Release mode:...
Fortinet Single Sign On Stack Overflow
Advisory ID Internal CORE-2015-0006 1. Advisory Information Title: Fortinet Single Sign On Stack Overflow Advisory ID: CORE-2015-0006 Advisory URL:https://www.coresecurity.com/advisories/fortinet-single-sign-on-stack-overflow Date published: 2015-03-18 Date of last update: 2015-03-18 Vendors...
FSSO stack-based buffer overflow
...