Vulnerabilities > Fortinet > Fortimanager

DATE CVE VULNERABILITY TITLE RISK
2018-06-27 CVE-2018-1355 Open Redirect vulnerability in Fortinet Fortianalyzer and Fortimanager
An open redirect vulnerability in Fortinet FortiManager 6.0.0, 5.6.5 and below versions, FortiAnalyzer 6.0.0, 5.6.5 and below versions allows attacker to inject script code during converting a HTML table to a PDF document under the FortiView feature.
network
low complexity
fortinet CWE-601
6.1
6.1
2018-06-27 CVE-2018-1354 Incorrect Permission Assignment for Critical Resource vulnerability in Fortinet Fortimanager
An improper access control vulnerability in Fortinet FortiManager 6.0.0, 5.6.5 and below versions, FortiAnalyzer 6.0.0, 5.6.5 and below versions allows a regular user edit the avatar picture of other users with arbitrary content.
network
low complexity
fortinet CWE-732
6.5
6.5