Fortinet

Fortimanager Firmware

15 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2017-17541

  • EPSS 0.17%
  • Published 16.07.2018 20:29:00
  • Last modified 21.11.2024 03:18:08

A Cross-site Scripting (XSS) vulnerability in Fortinet FortiManager 6.0.0, 5.6.4 and below versions, FortiAnalyzer 6.0.0, 5.6.4 and below versions allows inject Javascript code and HTML tags through the CN value of CA and CRL certificates via the imp...

7.8

CVE-2015-3617

  • EPSS 0.16%
  • Published 22.08.2017 15:29:00
  • Last modified 20.04.2025 01:37:25

Fortinet FortiManager 5.0 before 5.0.11 and 5.2 before 5.2.2 allow local users to gain privileges via crafted CLI commands.

7.5

CVE-2015-3614

  • EPSS 0.32%
  • Published 11.08.2017 21:29:00
  • Last modified 20.04.2025 01:37:25

Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote attackers to obtain arbitrary files via vectors involving another unspecified vulnerability.

5.4

CVE-2015-3615

  • EPSS 0.18%
  • Published 11.08.2017 21:29:00
  • Last modified 20.04.2025 01:37:25

Cross-site scripting (XSS) vulnerability in Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote authenticated users to inject arbitrary web script or HTML via vectors involving unspecified parameters and a privilege escalation...

9.8

CVE-2015-3616

  • EPSS 0.84%
  • Published 11.08.2017 21:29:00
  • Last modified 20.04.2025 01:37:25

SQL injection vulnerability in Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote attackers to execute arbitrary commands via unspecified parameters.

6.1

CVE-2017-3126

  • EPSS 0.24%
  • Published 27.05.2017 00:29:00
  • Last modified 20.04.2025 01:37:25

An Open Redirect vulnerability in Fortinet FortiAnalyzer 5.4.0 through 5.4.2 and FortiManager 5.4.0 through 5.4.2 allows attacker to execute unauthorized code or commands via the next parameter.

7.4

CVE-2016-8495

  • EPSS 0.13%
  • Published 13.02.2017 15:59:00
  • Last modified 20.04.2025 01:37:25

An improper certificate validation vulnerability in Fortinet FortiManager 5.0.6 through 5.2.7 and 5.4.0 through 5.4.1 allows remote attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack via the Fortisandbox devices probing fea...

5.4

CVE-2015-7363

  • EPSS 0.33%
  • Published 07.10.2016 14:59:02
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the advanced settings page in Fortinet FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.3, in hardware models with a hard disk, and FortiAnalyzer 5.x before 5.0.13 and 5.2.x before 5.2.3 allows remote ad...

6.1

CVE-2016-3195

  • EPSS 0.3%
  • Published 19.08.2016 21:59:07
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the Web-UI in Fortinet FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.6 and FortiAnalyzer 5.x before 5.0.13 and 5.2.x before 5.2.6 allows remote attackers to inject arbitrary web script or HTML via uns...

6.1

CVE-2016-3194

  • EPSS 0.3%
  • Published 19.08.2016 21:59:06
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the address added page in Fortinet FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.6 and FortiAnalyzer 5.x before 5.0.13 and 5.2.x before 5.2.6 allows remote attackers to inject arbitrary web script or ...