Fortinet

Fortirecorder

11 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2024-47569

  • EPSS 0.03%
  • Veröffentlicht 14.10.2025 15:23:03
  • Zuletzt bearbeitet 14.01.2026 10:16:02

A insertion of sensitive information into sent data vulnerability in Fortinet FortiMail 7.4.0 through 7.4.2, FortiMail 7.2.0 through 7.2.6, FortiMail 7.0 all versions, FortiManager 7.6.0 through 7.6.1, FortiManager 7.4.1 through 7.4.3, FortiManager C...

4.4

CVE-2024-40588

  • EPSS 0.02%
  • Veröffentlicht 12.08.2025 18:59:11
  • Zuletzt bearbeitet 14.01.2026 10:16:02

Multiple relative path traversal vulnerabilities [CWE-23] vulnerability in Fortinet FortiCamera 2.1 all versions, FortiCamera 2.0.0, FortiCamera 1.1 all versions, FortiCamera 1.0 all versions, FortiMail 7.6.0 through 7.6.1, FortiMail 7.4.0 through 7....

9.8

CVE-2025-32756

Warnung
  • EPSS 33.12%
  • Veröffentlicht 13.05.2025 14:46:44
  • Zuletzt bearbeitet 14.01.2026 19:18:55

A stack-based buffer overflow vulnerability [CWE-121] vulnerability in Fortinet FortiCamera 2.1.0 through 2.1.3, FortiCamera 2.0 all versions, FortiCamera 1.1 all versions, FortiMail 7.6.0 through 7.6.2, FortiMail 7.4.0 through 7.4.4, FortiMail 7.2.0...

5.3

CVE-2021-24008

  • EPSS 0.23%
  • Veröffentlicht 28.03.2025 10:13:32
  • Zuletzt bearbeitet 24.07.2025 19:57:26

An exposure of sensitive system information to an unauthorized control sphere vulnerability [CWE-497] in FortiDDoS version 5.4.0, version 5.3.2 and below, version 5.2.0, version 5.1.0, version 5.0.0, version 4.7.0, version 4.6.0, version 4.5.0, versi...

6.1

CVE-2022-23439

  • EPSS 0.13%
  • Veröffentlicht 22.01.2025 10:15:07
  • Zuletzt bearbeitet 14.01.2026 14:16:06

A externally controlled reference to a resource in another sphere vulnerability in Fortinet allows attacker to poison web caches via crafted HTTP requests, where the `Host` header points to an arbitrary webserver

9.1

CVE-2024-48885

  • EPSS 0.08%
  • Veröffentlicht 16.01.2025 09:15:06
  • Zuletzt bearbeitet 14.01.2026 13:16:09

A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet FortiRecorder 7.2.0 through 7.2.1, FortiRecorder 7.0.0 through 7.0.4, FortiVoice 7.0.0 through 7.0.4, FortiVoice 6.4.0 through 6.4.9, FortiVoic...

6.7

CVE-2024-56497

  • EPSS 0.08%
  • Veröffentlicht 14.01.2025 14:15:34
  • Zuletzt bearbeitet 03.02.2025 20:49:01

An improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiMail versions 7.2.0 through 7.2.4 and 7.0.0 through 7.0.6 and 6.4.0 through 6.4.7, FortiRecorder versions 7.0.0 and 6.4.0 through 6.4.4 all...

6

CVE-2024-47566

  • EPSS 0.12%
  • Veröffentlicht 14.01.2025 14:15:32
  • Zuletzt bearbeitet 31.01.2025 16:14:23

A improper limitation of a pathname to a restricted directory ('path traversal') [CWE-23] in Fortinet FortiRecorder version 7.2.0 through 7.2.1 and before 7.0.4 allows a privileged attacker to delete files from the underlying filesystem via crafted C...

9.1

CVE-2024-48884

  • EPSS 0.57%
  • Veröffentlicht 14.01.2025 14:15:32
  • Zuletzt bearbeitet 14.01.2026 13:16:08

A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet FortiManager 7.6.0 through 7.6.1, FortiManager 7.4.1 through 7.4.3, FortiManager Cloud 7.4.1 through 7.4.3, FortiOS 7.6.0, FortiOS 7.4.0 throug...

4.9

CVE-2024-46664

  • EPSS 0.22%
  • Veröffentlicht 14.01.2025 14:15:31
  • Zuletzt bearbeitet 31.01.2025 16:37:48

A relative path traversal in Fortinet FortiRecorder [CWE-23] version 7.2.0 through 7.2.1 and before 7.0.4 allows a privileged attacker to read files from the underlying filesystem via crafted HTTP or HTTPs requests.