Fortisandbox@4.0.0 Security Vulnerabilities and Issues — Fortisandbox@4.0.0 CVE List

Lucene search

FortinetFortisandbox4.0.0

3 matches found

CVE•added 2023/09/01 12:15 p.m.•799 views

CVE-2022-22305

An improper certificate validation vulnerability [CWE-295] in FortiManager 7.0.1 and below, 6.4.6 and below; FortiAnalyzer 7.0.2 and below, 6.4.7 and below; FortiOS 6.2.x and 6.0.x; FortiSandbox 4.0.x, 3.2.x and 3.1.x may allow a network adjacent and unauthenticated attacker to man-in-the-middle th...

5.4CVSS4.6AI score0.0007EPSS

CVE•added 2021/12/08 12:15 p.m.•51 views

CVE-2021-32591

A missing cryptographic steps vulnerability in the function that encrypts users' LDAP and RADIUS credentials in FortiSandbox before 4.0.1, FortiWeb before 6.3.12, FortiADC before 6.2.1, FortiMail 7.0.1 and earlier may allow an attacker in possession of the password store to compromise the confident...

5.3CVSS5.2AI score0.00167EPSS

CVE•added 2023/02/16 7:15 p.m.•42 views

CVE-2022-26115

A use of password hash with insufficient computational effort vulnerability [CWE-916] in FortiSandbox before 4.2.0 may allow an attacker with access to the password database to efficiently mount bulk guessing attacks to recover the passwords.

7.5CVSS7.5AI score0.00097EPSS