Vulnerabilities > Fortinet > Fortimanager > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-10-10 CVE-2023-41679 Unspecified vulnerability in Fortinet Fortimanager
An improper access control vulnerability [CWE-284] in FortiManager management interface 7.2.0 through 7.2.2, 7.0.0 through 7.0.7, 6.4.0 through 6.4.11, 6.2 all versions, 6.0 all versions may allow a remote and authenticated attacker with at least "device management" permission on his profile and belonging to a specific ADOM to add and delete CLI script on other ADOMs
network
low complexity
fortinet
critical
9.6
2020-02-04 CVE-2015-3613 Improper Privilege Management vulnerability in Fortinet Fortimanager
A vulnerability exists in in FortiManager 5.2.1 and earlier and 5.0.10 and earlier in the WebUI FTP backup page
network
low complexity
fortinet CWE-269
critical
9.8
2019-08-23 CVE-2019-6695 Insufficient Verification of Data Authenticity vulnerability in Fortinet Fortimanager 6.2.0
Lack of root file system integrity checking in Fortinet FortiManager VM application images of 6.2.0, 6.0.6 and below may allow an attacker to implant third-party programs by recreating the image through specific methods.
network
low complexity
fortinet CWE-345
critical
9.8