Fortiadc@6.2.6 Security Vulnerabilities and Issues — Fortiadc@6.2.6 CVE List

Lucene search

FortinetFortiadc6.2.6

7 matches found

CVE•added 2023/10/10 5:15 p.m.•59 views

CVE-2023-25607

An improper neutralization of special elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78 ] in FortiManager 7.2.0 through 7.2.2, 7.0.0 through 7.0.7, 6.4.0 through 6.4.11, 6.2 all versions, 6.0 all versions, FortiAnalyzer 7.2.0 through 7.2.2, 7.0.0 through 7.0.7, 6.4.0 thr...

7.8CVSS7.9AI score0.00151EPSS

CVE•added 2023/06/13 9:15 a.m.•44 views

CVE-2023-26210

Multiple improper neutralization of special elements used in an os command ('OS Command Injection') vulnerabilties [CWE-78] in Fortinet FortiADCManager version 7.1.0 and before 7.0.0, FortiADC version 7.2.0 and before 7.1.2 allows a local authenticated attacker to execute arbitrary shell code as ro...

7.8CVSS7.8AI score0.00171EPSS

CVE•added 2024/05/14 5:15 p.m.•44 views

CVE-2023-50180

An exposure of sensitive system information to an unauthorized control sphere vulnerability [CWE-497] in FortiADC version 7.4.1 and below, version 7.2.3 and below, version 7.1.4 and below, version 7.0.5 and below, version 6.2.6 and below may allow a read-only admin to view data pertaining to other ...

5.5CVSS6.3AI score0.00105EPSS

CVE•added 2024/07/09 4:15 p.m.•38 views

CVE-2023-50178

An improper certificate validation vulnerability [CWE-295] in FortiADC 7.4.0, 7.2.0 through 7.2.3, 7.1 all versions, 7.0 all versions, 6.2 all versions, 6.1 all versions and 6.0 all versions may allow a remote and unauthenticated attacker to perform a Man-in-the-Middle attack on the communication c...

7.4CVSS7.3AI score0.00114EPSS

CVE•added 2023/11/14 6:15 p.m.•37 views

CVE-2023-26205

An improper access control vulnerability [CWE-284] in FortiADC automation feature 7.1.0 through 7.1.2, 7.0 all versions, 6.2 all versions, 6.1 all versions may allow an authenticated low-privileged attacker to escalate their privileges to super_admin via a specific crafted configuration of fabric a...

8.8CVSS8.6AI score0.00203EPSS

CVE•added 2023/12/13 7:15 a.m.•27 views

CVE-2023-41673

An improper authorization vulnerability [CWE-285] in Fortinet FortiADC version 7.4.0 and before 7.2.2 may allow a low privileged user to read or backup the full system configuration via HTTP or HTTPS requests.

7.1CVSS5.3AI score0.0016EPSS

CVE•added 2025/08/12 7:15 p.m.•8 views

CVE-2025-49813

An improper neutralization of special elements used in an OS Command ("OS Command Injection") vulnerability [CWE-78] in Fortinet FortiADC version 7.2.0 and before 7.1.1 allows a remote and authenticated attacker with low privilege to execute unauthorized code via specifically crafted HTTP parameter...

7.2CVSS7.6AI score0.00109EPSS