Fortinet

Fortiproxy

101 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.4

CVE-2024-21754

  • EPSS 4.25%
  • Veröffentlicht 11.06.2024 15:16:03
  • Zuletzt bearbeitet 21.11.2024 08:54:56

A use of password hash with insufficient computational effort vulnerability [CWE-916] affecting FortiOS version 7.4.3 and below, 7.2 all versions, 7.0 all versions, 6.4 all versions and FortiProxy version 7.4.2 and below, 7.2 all versions, 7.0 all ve...

4.8

CVE-2024-23111

  • EPSS 0.14%
  • Veröffentlicht 11.06.2024 15:16:03
  • Zuletzt bearbeitet 21.11.2024 08:56:57

An improper neutralization of input during web page Generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiOS version 7.4.3 and below, 7.2 all versions, 7.0 all versions and FortiProxy version 7.4.2 and below, 7.2 all versions, 7.0 all ve...

5

CVE-2023-45586

  • EPSS 0.22%
  • Veröffentlicht 14.05.2024 17:15:24
  • Zuletzt bearbeitet 21.11.2024 08:27:00

An insufficient verification of data authenticity vulnerability [CWE-345] in Fortinet FortiOS SSL-VPN tunnel mode version 7.4.0 through 7.4.1, version 7.2.0 through 7.2.7 and before 7.0.12 & FortiProxy SSL-VPN tunnel mode version 7.4.0 through 7.4.1,...

7.2

CVE-2023-45583

  • EPSS 0.21%
  • Veröffentlicht 14.05.2024 17:15:22
  • Zuletzt bearbeitet 21.11.2024 08:27:00

A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.5, 7.0.0 through 7.0.11, 2.0.0 through 2.0.13, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6 FortiPAM versions 1.1.0, 1.0.0 through 1.0.3 FortiOS versions 7.4....

6.7

CVE-2023-36640

  • EPSS 0.09%
  • Veröffentlicht 14.05.2024 17:15:16
  • Zuletzt bearbeitet 21.11.2024 08:10:09

A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4, 7.0.0 through 7.0.10, 2.0.0 through 2.0.13, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7, FortiPAM versions 1.0.0 through 1.0.3, Forti...

8.8

CVE-2023-41677

  • EPSS 0.32%
  • Veröffentlicht 09.04.2024 15:15:27
  • Zuletzt bearbeitet 12.12.2024 19:22:04

A insufficiently protected credentials in Fortinet FortiProxy 7.4.0, 7.2.0 through 7.2.6, 7.0.0 through 7.0.12, 2.0.0 through 2.0.13, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7, Fortinet FortiOS 7.4.0 through 7.4.1, 7.2.0 through ...

4.3

CVE-2024-23112

  • EPSS 0.06%
  • Veröffentlicht 12.03.2024 15:15:49
  • Zuletzt bearbeitet 21.11.2024 08:56:57

An authorization bypass through user-controlled key vulnerability [CWE-639] in FortiOS version 7.4.0 through 7.4.1, 7.2.0 through 7.2.6, 7.0.1 through 7.0.13, 6.4.7 through 6.4.14, and FortiProxy version 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0....

9.8

CVE-2023-42789

  • EPSS 23.64%
  • Veröffentlicht 12.03.2024 15:15:46
  • Zuletzt bearbeitet 21.11.2024 08:23:09

A out-of-bounds write in Fortinet FortiOS 7.4.0 through 7.4.1, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14, 6.2.0 through 6.2.15, FortiProxy 7.4.0, 7.2.0 through 7.2.6, 7.0.0 through 7.0.12, 2.0.0 through 2.0.13 allows attacker to...

8.1

CVE-2023-42790

  • EPSS 0.17%
  • Veröffentlicht 12.03.2024 15:15:46
  • Zuletzt bearbeitet 21.11.2024 08:23:09

A stack-based buffer overflow in Fortinet FortiOS 7.4.0 through 7.4.1, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14, 6.2.0 through 6.2.15, FortiProxy 7.4.0, 7.2.0 through 7.2.6, 7.0.0 through 7.0.12, 2.0.0 through 2.0.13 allows att...

8.8

CVE-2023-29181

  • EPSS 0.28%
  • Veröffentlicht 22.02.2024 10:15:08
  • Zuletzt bearbeitet 10.12.2024 19:07:41

A use of externally-controlled format string in Fortinet FortiOS 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.12, 6.2.0 through 6.2.14, 6.0.0 through 6.0.16, FortiProxy 7.2.0 through 7.2.4, 7.0.0 through 7.0.10, 2.0.0 through 2.0.12, ...