Fortinet

Fortios

257 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2025-58903

  • EPSS 0.06%
  • Veröffentlicht 14.10.2025 15:22:34
  • Zuletzt bearbeitet 14.10.2025 20:22:21

An Unchecked Return Value vulnerability [CWE-252] in Fortinet FortiOS version 7.6.0 through 7.6.3 and before 7.4.8 API allows an authenticated user to cause a Null Pointer Dereference, crashing the http daemon via a specialy crafted request.

6.7

CVE-2025-22862

  • EPSS 0.02%
  • Veröffentlicht 02.10.2025 13:15:31
  • Zuletzt bearbeitet 15.10.2025 17:13:28

An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] in FortiOS 7.4.0 through 7.4.7, 7.2.0 through 7.2.11, 7.0.6 and above; and FortiProxy 7.6.0 through 7.6.2, 7.4.0 through 7.4.8, 7.2 all versions, 7.0.5 and above may ...

8.1

CVE-2024-26009

  • EPSS 0.18%
  • Veröffentlicht 12.08.2025 18:59:47
  • Zuletzt bearbeitet 14.08.2025 01:13:14

An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet FortiOS version 6.4.0 through 6.4.15 and before 6.2.16, FortiProxy version 7.4.0 through 7.4.2, 7.2.0 through 7.2.8 and before 7.0.15 & FortiPAM before ve...

6.5

CVE-2025-25248

  • EPSS 0.06%
  • Veröffentlicht 12.08.2025 18:59:39
  • Zuletzt bearbeitet 14.08.2025 01:21:03

An Integer Overflow or Wraparound vulnerability [CWE-190] in FortiOS version 7.6.2 and below, version 7.4.7 and below, version 7.2.10 and below, 7.2 all versions, 6.4 all versions, FortiProxy version 7.6.2 and below, version 7.4.3 and below, 7.2 all ...

7.2

CVE-2023-45584

  • EPSS 0.19%
  • Veröffentlicht 12.08.2025 18:59:35
  • Zuletzt bearbeitet 14.08.2025 01:03:40

A double free vulnerability [CWE-415] in Fortinet FortiOS version 7.4.0, version 7.2.0 through 7.2.5 and before 7.0.12, FortiProxy version 7.4.0 through 7.4.1, version 7.2.0 through 7.2.7 and before 7.0.13 and FortiPAM version 1.1.0 through 1.1.2 and...

7.2

CVE-2025-53744

  • EPSS 0.15%
  • Veröffentlicht 12.08.2025 18:59:22
  • Zuletzt bearbeitet 15.08.2025 12:27:51

An incorrect privilege assignment vulnerability [CWE-266] in FortiOS Security Fabric version 7.6.0 through 7.6.2, 7.4.0 through 7.4.7, 7.2 all versions, 7.0 all versions, 6.4 all versions, may allow a remote authenticated attacker with high privilege...

6.7

CVE-2025-24477

  • EPSS 0.02%
  • Veröffentlicht 15.07.2025 08:14:41
  • Zuletzt bearbeitet 03.11.2025 09:15:45

A heap-based buffer overflow in Fortinet FortiOS 7.6.0 through 7.6.2, FortiOS 7.4.0 through 7.4.7, FortiOS 7.2.4 through 7.2.12 allows an attacker to escalate its privileges via a specially crafted CLI command

7.2

CVE-2024-52965

Medienbericht
  • EPSS 0.04%
  • Veröffentlicht 08.07.2025 14:41:38
  • Zuletzt bearbeitet 22.07.2025 17:25:57

A missing critical step in authentication vulnerability [CWE-304] in Fortinet FortiOS version 7.6.0 through 7.6.1, 7.4.0 through 7.4.5, 7.2.0 through 7.2.10, and before 7.0.16 & FortiProxy version 7.6.0 through 7.6.1, 7.4.0 through 7.4.8, 7.2.0 throu...

5.3

CVE-2024-55599

Medienbericht
  • EPSS 0.03%
  • Veröffentlicht 08.07.2025 14:41:34
  • Zuletzt bearbeitet 22.07.2025 16:22:46

An Improperly Implemented Security Check for Standard vulnerability [CWE-358] in FortiOS version 7.6.0, version 7.4.7 and below, 7.0 all versions, 6.4 all versions and FortiProxy version 7.6.1 and below, version 7.4.8 and below, 7.2 all versions, 7.0...

5.9

CVE-2024-50568

  • EPSS 0.01%
  • Veröffentlicht 10.06.2025 16:36:21
  • Zuletzt bearbeitet 25.07.2025 15:25:35

A channel accessible by non-endpoint vulnerability [CWE-300] in Fortinet FortiOS version 7.4.0 through 7.4.3, 7.2.0 through 7.2.7 and before 7.0.14 & FortiProxy version 7.4.0 through 7.4.3, 7.2.0 through 7.2.9 and before 7.0.16 allows an unauthentica...