Fortimail@5.4.0 Security Vulnerabilities and Issues — Fortimail@5.4.0 CVE List

Lucene search

FortinetFortimail5.4.0

4 matches found

CVE•added 2025/03/31 3:15 p.m.•73 views

CVE-2023-33302

A buffer copy without checking size of input ('classic buffer overflow') in Fortinet FortiMail webmail and administrative interface version 6.4.0 through 6.4.4 and before 6.2.6 and FortiNDR administrative interface version 7.2.0 and before 7.1.0 allows an authenticated attacker with regular webmail...

8.8CVSS7.8AI score0.00111EPSS

CVE•added 2021/12/08 11:15 a.m.•64 views

CVE-2021-42757

A buffer overflow [CWE-121] in the TFTP client library of FortiOS before 6.4.7 and FortiOS 7.0.0 through 7.0.2, may allow an authenticated local attacker to achieve arbitrary code execution via specially crafted command line arguments.

6.7CVSS6.9AI score0.00082EPSS

CVE•added 2021/07/12 2:15 p.m.•41 views

CVE-2021-24015

An improper neutralization of special elements used in an OS Command vulnerability in the administrative interface of FortiMail before 6.4.4 may allow an authenticated attacker to execute unauthorized commands via specifically crafted HTTP requests.

8.8CVSS8.7AI score0.00313EPSS

CVE•added 2021/07/12 2:15 p.m.•32 views

CVE-2021-24013

Multiple Path traversal vulnerabilities in the Webmail of FortiMail before 6.4.4 may allow a regular user to obtain unauthorized access to files and data via specifically crafted web requests.

8.8CVSS6.5AI score0.00386EPSS