Fortinet

Fortianalyzer

81 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2025-53845

  • EPSS 0.13%
  • Veröffentlicht 14.10.2025 15:23:42
  • Zuletzt bearbeitet 15.10.2025 17:19:50

An improper authentication vulnerability [CWE-287] in Fortinet FortiAnalyzer version 7.6.0 through 7.6.3 and before 7.4.6 allows an unauthenticated attacker to obtain information pertaining to the device's health and status, or cause a denial of serv...

5.3

CVE-2025-54973

  • EPSS 0.04%
  • Veröffentlicht 14.10.2025 15:23:03
  • Zuletzt bearbeitet 22.10.2025 16:31:59

A concurrent execution using shared resource with improper synchronization ('Race Condition') vulnerability [CWE-362] in Fortinet FortiAnalyzer version 7.6.0 through 7.6.2, 7.4.0 through 7.4.6, 7.2.0 through 7.2.10 and before 7.0.13 allows an attacke...

7.2

CVE-2024-50571

  • EPSS 0.08%
  • Veröffentlicht 14.10.2025 15:23:00
  • Zuletzt bearbeitet 15.10.2025 17:34:34

A heap-based buffer overflow in Fortinet FortiOS 7.6.0 through 7.6.1, 7.4.0 through 7.4.5, 7.2.0 through 7.2.10, 7.0.0 through 7.0.16, 6.4.0 through 6.4.15, 6.2.0 through 6.2.17, FortiManager Cloud 7.6.2, 7.4.1 through 7.4.5, 7.2.1 through 7.2.8, 7.0...

2.7

CVE-2025-24474

Medienbericht
  • EPSS 0.02%
  • Veröffentlicht 08.07.2025 14:41:34
  • Zuletzt bearbeitet 22.07.2025 18:11:02

An Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability [CWE-89] in FortiManager 7.6.0 through 7.6.1, 7.4.0 through 7.4.6, 7.2 all versions, 7.0 all versions, 6.4 all versions; FortiManager Cloud 7.4.1 th...

5.3

CVE-2024-52962

Medienbericht
  • EPSS 0.05%
  • Veröffentlicht 08.04.2025 14:15:32
  • Zuletzt bearbeitet 23.07.2025 16:02:05

An Improper Output Neutralization for Logs vulnerability [CWE-117] in FortiAnalyzer version 7.6.1 and below, version 7.4.5 and below, version 7.2.8 and below, version 7.0.13 and below and FortiManager version 7.6.1 and below, version 7.4.5 and below,...

7.5

CVE-2024-50565

Medienbericht
  • EPSS 0.05%
  • Veröffentlicht 08.04.2025 14:15:31
  • Zuletzt bearbeitet 25.07.2025 15:22:38

A improper restriction of communication channel to intended endpoints vulnerability [CWE-923] in Fortinet FortiOS version 7.4.0 through 7.4.3, 7.2.0 through 7.2.7, 7.0.0 through 7.0.14, 6.4.0 through 6.4.15 and 6.2.0 through 6.2.16, Fortinet FortiPro...

7.5

CVE-2024-26013

Medienbericht
  • EPSS 0.06%
  • Veröffentlicht 08.04.2025 14:15:30
  • Zuletzt bearbeitet 25.07.2025 15:22:20

A improper restriction of communication channel to intended endpoints vulnerability [CWE-923] in Fortinet FortiOS version 7.4.0 through 7.4.4, 7.2.0 through 7.2.8, 7.0.0 through 7.0.15, 6.4.0 through 6.4.15 and before 6.2.16, Fortinet FortiProxy vers...

9.8

CVE-2023-25610

Warnung
  • EPSS 25.03%
  • Veröffentlicht 24.03.2025 15:39:48
  • Zuletzt bearbeitet 24.07.2025 19:56:34

A buffer underwrite ('buffer underflow') vulnerability in the administrative interface of Fortinet FortiOS version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.6, version 6.4.0 through 6.4.11 and version 6.2.12 and below, FortiProxy version 7.2.0 t...

6.5

CVE-2024-40585

  • EPSS 0.07%
  • Veröffentlicht 14.03.2025 15:45:46
  • Zuletzt bearbeitet 23.07.2025 21:13:40

An insertion of sensitive information into log file vulnerabilities [CWE-532] in FortiManager version 7.4.0, version 7.2.3 and below, version 7.0.8 and below, version 6.4.12 and below, version 6.2.11 and below and FortiAnalyzer version 7.4.0, version...

6.7

CVE-2024-33501

  • EPSS 0.03%
  • Veröffentlicht 11.03.2025 14:54:41
  • Zuletzt bearbeitet 24.07.2025 19:05:16

Two improper neutralization of special elements used in an SQL Command ('SQL Injection') vulnerability [CWE-89] in Fortinet FortiAnalyzer version 7.4.0 through 7.4.2 and before 7.2.5, FortiManager version 7.4.0 through 7.4.2 and before 7.2.5 and Fort...