Fortinet

Fortios

236 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.7

CVE-2025-22862

  • EPSS 0.02%
  • Veröffentlicht 02.10.2025 13:15:31
  • Zuletzt bearbeitet 02.10.2025 19:11:46

An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] in FortiOS 7.4.0 through 7.4.7, 7.2 all versions, 7.0.6 and above; and FortiProxy 7.6.0 through 7.6.2, 7.4.0 through 7.4.8, 7.2 all versions, 7.0.5 and above may allo...

8.1

CVE-2024-26009

  • EPSS 0.13%
  • Veröffentlicht 12.08.2025 18:59:47
  • Zuletzt bearbeitet 14.08.2025 01:13:14

An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet FortiOS version 6.4.0 through 6.4.15 and before 6.2.16, FortiProxy version 7.4.0 through 7.4.2, 7.2.0 through 7.2.8 and before 7.0.15 & FortiPAM before ve...

6.5

CVE-2025-25248

  • EPSS 0.06%
  • Veröffentlicht 12.08.2025 18:59:39
  • Zuletzt bearbeitet 14.08.2025 01:21:03

An Integer Overflow or Wraparound vulnerability [CWE-190] in FortiOS version 7.6.2 and below, version 7.4.7 and below, version 7.2.10 and below, 7.2 all versions, 6.4 all versions, FortiProxy version 7.6.2 and below, version 7.4.3 and below, 7.2 all ...

7.2

CVE-2023-45584

  • EPSS 0.19%
  • Veröffentlicht 12.08.2025 18:59:35
  • Zuletzt bearbeitet 14.08.2025 01:03:40

A double free vulnerability [CWE-415] in Fortinet FortiOS version 7.4.0, version 7.2.0 through 7.2.5 and before 7.0.12, FortiProxy version 7.4.0 through 7.4.1, version 7.2.0 through 7.2.7 and before 7.0.13 and FortiPAM version 1.1.0 through 1.1.2 and...

7.2

CVE-2025-53744

  • EPSS 0.15%
  • Veröffentlicht 12.08.2025 18:59:22
  • Zuletzt bearbeitet 15.08.2025 12:27:51

An incorrect privilege assignment vulnerability [CWE-266] in FortiOS Security Fabric version 7.6.0 through 7.6.2, 7.4.0 through 7.4.7, 7.2 all versions, 7.0 all versions, 6.4 all versions, may allow a remote authenticated attacker with high privilege...

6.7

CVE-2025-24477

  • EPSS 0.02%
  • Veröffentlicht 15.07.2025 08:14:41
  • Zuletzt bearbeitet 18.07.2025 13:35:17

A heap-based buffer overflow in Fortinet FortiOS versions 7.6.0 through 7.6.2, 7.4.0 through 7.4.7, 7.2.4 through 7.2.11 allows an attacker to escalate its privileges via a specially crafted CLI command

7.2

CVE-2024-52965

Medienbericht
  • EPSS 0.05%
  • Veröffentlicht 08.07.2025 14:41:38
  • Zuletzt bearbeitet 22.07.2025 17:25:57

A missing critical step in authentication vulnerability [CWE-304] in Fortinet FortiOS version 7.6.0 through 7.6.1, 7.4.0 through 7.4.5, 7.2.0 through 7.2.10, and before 7.0.16 & FortiProxy version 7.6.0 through 7.6.1, 7.4.0 through 7.4.8, 7.2.0 throu...

5.3

CVE-2024-55599

Medienbericht
  • EPSS 0.04%
  • Veröffentlicht 08.07.2025 14:41:34
  • Zuletzt bearbeitet 22.07.2025 16:22:46

An Improperly Implemented Security Check for Standard vulnerability [CWE-358] in FortiOS version 7.6.0, version 7.4.7 and below, 7.0 all versions, 6.4 all versions and FortiProxy version 7.6.1 and below, version 7.4.8 and below, 7.2 all versions, 7.0...

5.9

CVE-2024-50568

  • EPSS 0.01%
  • Veröffentlicht 10.06.2025 16:36:21
  • Zuletzt bearbeitet 25.07.2025 15:25:35

A channel accessible by non-endpoint vulnerability [CWE-300] in Fortinet FortiOS version 7.4.0 through 7.4.3, 7.2.0 through 7.2.7 and before 7.0.14 & FortiProxy version 7.4.0 through 7.4.3, 7.2.0 through 7.2.9 and before 7.0.16 allows an unauthentica...

2.3

CVE-2023-29184

  • EPSS 0.02%
  • Veröffentlicht 10.06.2025 16:36:19
  • Zuletzt bearbeitet 24.07.2025 19:57:52

An incomplete cleanup vulnerability [CWE-459] in FortiOS 7.2 all versions and before & FortiProxy version 7.2.0 through 7.2.2 and before 7.0.8 allows a VDOM privileged attacker to add SSH key files on the system silently via crafted CLI requests.