Fortinet Vulnérabilités

Chronologie

Taper

Produit

Fortinet FortiOS170
Fortinet FortiWeb76
Fortinet FortiManager58
Fortinet FortiAnalyzer51
Fortinet FortiProxy47

Contre-mesures

Official Fix385
Temporary Fix0
Workaround2
Unavailable3
Not Defined318

Exploitabilité

High13
Functional0
Proof-of-Concept40
Unproven9
Not Defined646

Vecteur d'accès

Not Defined0
Physical2
Local111
Adjacent29
Network566

Authentification

Not Defined0
High79
Low319
None310

Interaction de l'utilisateur

Not Defined0
Required165
None543

C3BM Index

CVSSv3 Base

≤10
≤20
≤37
≤445
≤5141
≤6155
≤7139
≤8114
≤971
≤1036

CVSSv3 Temp

≤10
≤20
≤38
≤451
≤5151
≤6152
≤7144
≤8100
≤971
≤1031

VulDB

≤10
≤24
≤325
≤4102
≤5162
≤6112
≤7107
≤8107
≤955
≤1034

NVD

≤10
≤20
≤32
≤46
≤522
≤666
≤792
≤881
≤948
≤1041

CNA

≤10
≤20
≤35
≤427
≤562
≤649
≤773
≤887
≤963
≤1029

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤102

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k166
<2k323
<5k205
<10k2
<25k0
<50k6
<100k6
≥100k0

Exploiter aujourd'hui

<1k648
<2k37
<5k15
<10k2
<25k4
<50k2
<100k0
≥100k0

Exploiter le volume du marché

🔴 CTI Activités

Affected Products (101): Antivirus (5), Connect (1), FSSO Collector (1), FortiADC (31), FortiADC Manager (1), FortiADCManager (1), FortiAI (1), FortiAP (3), FortiAP-C (2), FortiAP-S (1), FortiAP-S-W2 (1), FortiAP-S W2 (1), FortiAP-U (5), FortiAP-U CLI (1), FortiAP-W2 (2), FortiAnalyzer (51), FortiAnalyzer Appliance (2), FortiAnalyzerVM (1), FortiAuthenticator (15), FortiAuthenticator HA Service (1), FortiAuthenticator OWA Agent for Microsoft OWA (1), FortiBalancer (3), FortiClient (45), FortiClientEMS (9), FortiClient EMS (3), FortiClient Host Security (1), FortiClient Linux SSLVPN (1), FortiClientMac (2), FortiClientMacOS (1), FortiClient Online Installer (1), FortiClientWindows (5), FortiConverter (1), FortiDDoS (1), FortiDDoS-F (2), FortiDDoS API (1), FortiDeceptor (7), FortiEDR (6), FortiEDR CollectorWindows (1), FortiExtender (3), FortiExtender Management Interface (1), FortiGate (8), FortiGuest (1), FortiIsolator (4), FortiMail (28), FortiMail Admin WebUI (2), FortiMail Webmail (1), FortiManager (58), FortiManager GUI (1), FortiManager Management Interface (1), FortiManagerVM (1), FortiManager VM (1), FortiNAC (28), FortiNAC-F (5), FortiNAC Portal UI (1), FortiNDR (1), FortiOS (170), FortiOS SSL-VPN (1), FortiPAM (4), FortiPortal (26), FortiPortal GUI (1), FortiPortal Management Interface (1), FortiPresence (2), FortiPresence Infrastructure Server (1), FortiProxy (47), FortiRecorder (5), FortiSIEM (16), FortiSIEM Windows Agent (3), FortiSOAR (9), FortiSandbox (27), FortiSwitch (5), FortiSwitch FSW (1), FortiSwitchManager (3), FortiTester (13), FortiTokenAndroid (1), FortiToken Mobile (1), FortiTokenWinApp (1), FortiTokeniOS (1), FortiVoice (2), FortiVoiceEnterprise (1), FortiVoiceEntreprise (1), FortiWAN (4), FortiWLC (10), FortiWLC-SD (1), FortiWLM (22), FortiWan (10), FortiWeb (76), FortiWebManager (2), FortiWeb webUI Certificate View Page (1), Fortiadc-400e (1), Fortigate FortiDB (1), Fortiguard Antivirus (1), Fortimail (1), Fortinet28 (1), Fortinet Antivirus (1), Fortinet firewall (1), FotiOS (2), IPS Engine (1), Internet Key Exchange (1), Manager (1), Meru AP (1), Single Sign On (1)

Link to Vendor Website: https://www.fortinet.com/

PubliéBaseTempVulnérabilitéProdExpConCTIEPSSCVE
12/03/20246.36.2Fortinet FortiOS/FortiProxy elévation de privilègesFirewall SoftwareNot DefinedOfficial Fix0.080.00045CVE-2024-23112
12/03/20244.34.2Fortinet FortiPortal elévation de privilègesInconnueNot DefinedOfficial Fix0.060.00043CVE-2024-21761
12/03/20246.26.1Fortinet FortiOS FortiAuthenticator HA authentification faibleFirewall SoftwareNot DefinedOfficial Fix0.030.00043CVE-2023-46717
12/03/20248.58.4Fortinet FortiClientEMS Packets sql injectionInconnueNot DefinedOfficial Fix0.080.00091CVE-2023-48788
12/03/20247.97.8Fortinet FortiClientEMS Packets elévation de privilègesInconnueNot DefinedOfficial Fix0.050.00091CVE-2023-47534
12/03/20246.76.5Fortinet FortiManager/FortiAnalyzer/FortiPortal Command Argument Format StringInconnueNot DefinedOfficial Fix0.040.00043CVE-2023-41842
12/03/20249.08.8Fortinet FortiManager HTTP Request elévation de privilègesInconnueNot DefinedOfficial Fix0.000.00091CVE-2023-36554
12/03/20248.17.9Fortinet FortiOS/FortiProxy/FortiSwitchManager/FortiPAM HTTP Request buffer overflowFirewall SoftwareNot DefinedOfficial Fix0.030.00088CVE-2023-42790
12/03/20249.89.6Fortinet FortiOS/FortiPAM/FortiProxy HTTP Request buffer overflowFirewall SoftwareNot DefinedOfficial Fix0.070.00091CVE-2023-42789
20/02/20249.39.1Fortinet FortiManager/FortiAnalyzer HTTP Request directory traversalInconnueNot DefinedOfficial Fix0.030.00043CVE-2023-42791
15/02/20245.15.1Fortinet FortiNAC Policy Audit Log cross site scriptingInconnueNot DefinedOfficial Fix0.040.00046CVE-2023-26206
15/02/20243.83.8Fortinet FortiManager/FortiAnalyzer HTTP divulgation de l'informationInconnueNot DefinedOfficial Fix0.030.00045CVE-2023-44253
15/02/20247.77.6Fortinet FortiClientEMS HTTP elévation de privilègesInconnueNot DefinedOfficial Fix0.040.00050CVE-2023-45581
09/02/20245.25.1Fortinet FortiOS authentification faibleFirewall SoftwareNot DefinedOfficial Fix0.040.00046CVE-2023-47537
09/02/20249.89.6Fortinet FortiOS fgfmd Format StringFirewall SoftwareNot DefinedOfficial Fix0.080.00091CVE-2024-23113
09/02/20249.89.6Fortinet FortiOS SSL-VPN buffer overflowFirewall SoftwareHighOfficial Fix0.040.02287CVE-2024-21762
05/02/20249.99.7Fortinet FortiSIEM API Request elévation de privilègesInconnueNot DefinedOfficial Fix0.050.00068CVE-2024-23108
05/02/20249.99.7Fortinet FortiSIEM API Request elévation de privilègesInconnueNot DefinedOfficial Fix0.080.00068CVE-2024-23109
10/01/20245.45.3Fortinet FortiVoice HTTP Request directory traversalInconnueNot DefinedOfficial Fix0.040.00068CVE-2023-37932
10/01/20245.95.7Fortinet FortiPortal GET Request elévation de privilègesInconnueNot DefinedOfficial Fix0.020.00056CVE-2023-48783
10/01/20247.77.6Fortinet FortiPortal HTTP Request elévation de privilègesInconnueNot DefinedOfficial Fix0.020.00050CVE-2023-46712
10/01/20245.05.0Fortinet FortiPAM HTTP Request dénie de serviceInconnueNot DefinedOfficial Fix0.040.00044CVE-2023-37934
09/01/20248.88.6Fortinet FortiOS/FortiProxy HA Request elévation de privilègesFirewall SoftwareNot DefinedOfficial Fix0.020.00050CVE-2023-44250
13/12/20239.39.1Fortinet FortiWAN JWT Token authentification faibleInconnueNot DefinedOfficial Fix0.020.00050CVE-2023-44252
13/12/20237.87.7Fortinet FortiWAN HTTP Request directory traversalInconnueNot DefinedOfficial Fix0.020.00049CVE-2023-44251

683 plus d'entrées ne sont pas affichées

Want to stay up to date on a daily basis?

Enable the mail alert feature now!