Fortimail@7.0.0 Security Vulnerabilities and Issues — Fortimail@7.0.0 CVE List

Lucene search

FortinetFortimail7.0.0

3 matches found

CVE•added 2022/03/01 6:15 p.m.•86 views

CVE-2021-36166

An improper authentication vulnerability in FortiMail before 7.0.1 may allow a remote attacker to efficiently guess one administrative account's authentication token by means of the observation of certain system's properties.

9.8CVSS9.4AI score0.00475EPSS

CVE•added 2022/03/01 7:15 p.m.•83 views

CVE-2021-32586

An improper input validation vulnerability in the web server CGI facilities of FortiMail before 7.0.1 may allow an unauthenticated attacker to alter the environment of the underlying script interpreter via specifically crafted HTTP requests.

9.8CVSS9.4AI score0.00436EPSS

CVE•added 2021/12/08 12:15 p.m.•51 views

CVE-2021-32591

A missing cryptographic steps vulnerability in the function that encrypts users' LDAP and RADIUS credentials in FortiSandbox before 4.0.1, FortiWeb before 6.3.12, FortiADC before 6.2.1, FortiMail 7.0.1 and earlier may allow an attacker in possession of the password store to compromise the confident...

5.3CVSS5.2AI score0.00167EPSS