Fortinet

Fortiweb

124 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2026-40688

  • EPSS 0.2%
  • Veröffentlicht 14.04.2026 22:35:15
  • Zuletzt bearbeitet 20.04.2026 18:07:49

An out-of-bounds write vulnerability [CWE-787] vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.3, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4.0 through 7.4.11 may allow a remote privileged attacker to execute arbitrary code or command via crafted...

4.9

CVE-2026-39811

  • EPSS 0.14%
  • Veröffentlicht 14.04.2026 15:38:20
  • Zuletzt bearbeitet 21.04.2026 17:16:24

A integer overflow or wraparound vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.3, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4 all versions, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow attacker to denial of service via <insert...

6.7

CVE-2026-39814

  • EPSS 0.02%
  • Veröffentlicht 14.04.2026 15:38:16
  • Zuletzt bearbeitet 21.04.2026 17:21:18

A relative path traversal vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.2, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4.1 through 7.4.12, FortiWeb 7.2.7 through 7.2.12, FortiWeb 7.0.10 through 7.0.12 may allow attacker to execute unauthorized co...

7.2

CVE-2025-66178

Medienbericht
  • EPSS 0.04%
  • Veröffentlicht 10.03.2026 16:44:21
  • Zuletzt bearbeitet 12.03.2026 20:26:06

A improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.1, FortiWeb 7.6.0 through 7.6.5, FortiWeb 7.4.0 through 7.4.11, FortiWeb 7.2.0 through 7.2.12, FortiWeb ...

6.6

CVE-2026-24640

Medienbericht
  • EPSS 0.04%
  • Veröffentlicht 10.03.2026 16:44:20
  • Zuletzt bearbeitet 12.03.2026 20:12:21

A Stack-based Buffer Overflow vulnerability [CWE-121] vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.2, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4 all versions, FortiWeb 7.2 all versions, FortiWeb 7.0.2 through 7.0.12 may allow a remote authent...

6.5

CVE-2026-24641

Medienbericht
  • EPSS 0.16%
  • Veröffentlicht 10.03.2026 16:44:20
  • Zuletzt bearbeitet 12.03.2026 20:10:46

A NULL Pointer Dereference vulnerability [CWE-476] vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.2, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4 all versions, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow an authenticated attack...

8.1

CVE-2026-24017

Medienbericht
  • EPSS 0.14%
  • Veröffentlicht 10.03.2026 16:44:19
  • Zuletzt bearbeitet 12.03.2026 17:10:26

An Improper Control of Interaction Frequency vulnerability [CWE-799] vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.2, FortiWeb 7.6.0 through 7.6.5, FortiWeb 7.4.0 through 7.4.10, FortiWeb 7.2.0 through 7.2.11, FortiWeb 7.0.0 through 7.0.11 may...

5.3

CVE-2025-48840

Medienbericht
  • EPSS 0.07%
  • Veröffentlicht 10.03.2026 16:44:14
  • Zuletzt bearbeitet 12.03.2026 21:20:03

An authentication bypass by spoofing vulnerability in Fortinet FortiWeb 7.6.0 through 7.6.3, FortiWeb 7.4.0 through 7.4.8, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow a remote unauthenticated attacker to bypass hostname restriction...

6.6

CVE-2026-30897

Medienbericht
  • EPSS 0.04%
  • Veröffentlicht 10.03.2026 16:44:04
  • Zuletzt bearbeitet 12.03.2026 17:10:03

A stack-based buffer overflow vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.3, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4.0 through 7.4.11, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions may allow a remote authenticated attacker who can ...

9.8

CVE-2026-24858

Warnung Medienbericht
  • EPSS 3.95%
  • Veröffentlicht 27.01.2026 19:18:23
  • Zuletzt bearbeitet 12.05.2026 18:47:28

An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.5, FortiAnalyzer 7.4.0 through 7.4.9, FortiAnalyzer 7.2.0 through 7.2.11, FortiAnalyzer 7.0.0 through 7.0.15...