Fortinet

Fortisandbox

58 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.7

CVE-2023-47541

  • EPSS 0.14%
  • Veröffentlicht 09.04.2024 15:15:28
  • Zuletzt bearbeitet 14.01.2026 15:15:54

An improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.2, FortiSandbox 4.2.1 through 4.2.6, FortiSandbox 4.0 all versions, FortiSandbox 3.2 all versions, FortiSandbox...

6.7

CVE-2023-47540

  • EPSS 0.14%
  • Veröffentlicht 09.04.2024 15:15:27
  • Zuletzt bearbeitet 14.01.2026 14:16:09

An improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.2, FortiSandbox 4.2.1 through 4.2.6, FortiSandbox 4.0 all versions, FortiSandbox 3.2 all versions, ...

5.4

CVE-2023-45587

  • EPSS 0.44%
  • Veröffentlicht 13.12.2023 07:15:20
  • Zuletzt bearbeitet 14.01.2026 14:16:09

An improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.2, FortiSandbox 4.2 all versions, FortiSandbox 4.0 all versions, FortiSandbox 3.2 all versions, FortiSand...

5.4

CVE-2023-41844

  • EPSS 0.44%
  • Veröffentlicht 13.12.2023 07:15:18
  • Zuletzt bearbeitet 14.01.2026 14:16:08

A improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.2, FortiSandbox 4.2 all versions, FortiSandbox 4.0 all versions, FortiSandbox 3.2 all versions, FortiSandb...

5.4

CVE-2023-41843

  • EPSS 0.24%
  • Veröffentlicht 13.10.2023 15:15:44
  • Zuletzt bearbeitet 14.01.2026 14:16:08

A improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.1, FortiSandbox 4.2.1 through 4.2.5, FortiSandbox 4.0.0 through 4.0.3, FortiSandbox 3.2 all versions, Fort...

6.1

CVE-2023-41836

  • EPSS 0.09%
  • Veröffentlicht 13.10.2023 15:15:44
  • Zuletzt bearbeitet 14.01.2026 15:15:54

An improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Fortinet FortiSandbox 4.4.0, FortiSandbox 4.2.1 through 4.2.4, FortiSandbox 4.0 all versions, FortiSandbox 3.2 all versions, FortiSandbox 3.1 all...

7.5

CVE-2023-41682

  • EPSS 0.45%
  • Veröffentlicht 13.10.2023 15:15:44
  • Zuletzt bearbeitet 14.01.2026 14:16:08

A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet FortiSandbox 4.4.0, FortiSandbox 4.2.1 through 4.2.5, FortiSandbox 4.0.0 through 4.0.3, FortiSandbox 3.2 all versions, FortiSandbox 3.1 all ver...

6.1

CVE-2023-41681

  • EPSS 0.14%
  • Veröffentlicht 13.10.2023 15:15:44
  • Zuletzt bearbeitet 14.01.2026 14:16:08

A improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.1, FortiSandbox 4.2.1 through 4.2.5, FortiSandbox 4.0.0 through 4.0.3, FortiSandbox 3.2 all versions, Fort...

6.1

CVE-2023-41680

  • EPSS 0.19%
  • Veröffentlicht 13.10.2023 15:15:44
  • Zuletzt bearbeitet 14.01.2026 14:16:08

A improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.1, FortiSandbox 4.2.1 through 4.2.5, FortiSandbox 4.0.0 through 4.0.3, FortiSandbox 3.2 all versions, Fort...

4.2

CVE-2022-22305

  • EPSS 0.05%
  • Veröffentlicht 01.09.2023 12:15:08
  • Zuletzt bearbeitet 21.11.2024 06:46:36

An improper certificate validation vulnerability [CWE-295] in FortiManager 7.0.1 and below, 6.4.6 and below; FortiAnalyzer 7.0.2 and below, 6.4.7 and below; FortiOS 6.2.x and 6.0.x; FortiSandbox 4.0.x, 3.2.x and 3.1.x may allow a network adjacent and...