Vulnerabilities > Fortinet > Fortios > 5.0.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-07-08 | CVE-2013-1414 | Cross-Site Request Forgery (CSRF) vulnerability in Fortinet products Multiple cross-site request forgery (CSRF) vulnerabilities in Fortinet FortiOS on FortiGate firewall devices before 4.3.13 and 5.x before 5.0.2 allow remote attackers to hijack the authentication of administrators for requests that modify (1) settings or (2) policies, or (3) restart the device via a rebootme action to system/maintenance/shutdown. | 5.1 |
2013-06-25 | CVE-2013-4604 | Permissions, Privileges, and Access Controls vulnerability in Fortinet Fortios Fortinet FortiOS before 5.0.3 on FortiGate devices does not properly restrict Guest capabilities, which allows remote authenticated users to read, modify, or delete the records of arbitrary users by leveraging the Guest role. | 6.5 |