Forticlient Enterprise Management Server Security Vulnerabilities and Issues — Forticlient Enterprise Management Server CVE List

Lucene search

FortinetForticlient Enterprise Management Server

3 matches found

CVE•added 2024/03/12 3:15 p.m.•381 views

CVE-2023-48788

A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiClientEMS version 7.2.0 through 7.2.2, FortiClientEMS 7.0.1 through 7.0.10 allows attacker to execute unauthorized code or commands via specially crafted packets.

9.8CVSS9.7AI score0.94176EPSS

CVE•added 2024/09/10 3:15 p.m.•42 views

CVE-2024-33508

An improper neutralization of special elements used in a command ('Command Injection') vulnerability [CWE-77] in Fortinet FortiClientEMS 7.2.0 through 7.2.4, 7.0.0 through 7.0.12 may allow an unauthenticated attacker to execute limited and temporary operations on the underlying database via crafted...

7.3CVSS7.3AI score0.06286EPSS

CVE•added 2024/02/15 2:15 p.m.•34 views

CVE-2023-45581

An improper privilege management vulnerability [CWE-269] in Fortinet FortiClientEMS version 7.2.0 through 7.2.2 and before 7.0.10 allows an Site administrator with Super Admin privileges to perform global administrative operations affecting other sites via crafted HTTP or HTTPS requests.

8.8CVSS7AI score0.0011EPSS