Vulnerabilities > Fortinet

DATE	CVE	VULNERABILITY TITLE	RISK
2017-08-11	CVE-2015-3614	Information Exposure vulnerability in Fortinet Fortimanager Firmware Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote attackers to obtain arbitrary files via vectors involving another unspecified vulnerability. network low complexity fortinet CWE-200	7.5
2017-08-10	CVE-2017-7737	Files or Directories Accessible to External Parties vulnerability in Fortinet Fortiweb An information disclosure vulnerability in Fortinet FortiWeb 5.8.2 and below versions allows logged-in admin user to view SNMPv3 user password in cleartext in webui via the HTML source code. network low complexity fortinet CWE-552	4.9
2017-08-10	CVE-2017-3130	Information Exposure vulnerability in Fortinet Fortios An information disclosure vulnerability in Fortinet FortiOS 5.6.0, 5.4.4 and below versions allows attacker to get FortiOS version info by inspecting FortiOS IKE VendorID packets. network low complexity fortinet CWE-200	7.5
2017-07-22	CVE-2017-7336	Use of Hard-coded Credentials vulnerability in Fortinet Fortiwlm 8.2.2/8.2.4/8.3.0 A hard-coded account named 'upgrade' in Fortinet FortiWLM 8.3.0 and lower versions allows a remote attacker to log-in and execute commands with 'upgrade' account privileges. network low complexity fortinet CWE-798 critical	9.8
2017-06-26	CVE-2016-8493	Permissions, Privileges, and Access Controls vulnerability in Fortinet Forticlient 5.4.1/5.4.2 In FortiClientWindows 5.4.1 and 5.4.2, an attacker may escalate privilege via a FortiClientNamedPipe vulnerability. network low complexity fortinet CWE-264	8.8
2017-06-01	CVE-2017-3127	Cross-site Scripting vulnerability in Fortinet Fortios A Cross-Site Scripting vulnerability in Fortinet FortiGate 5.2.0 through 5.2.10 allows attacker to execute unauthorized code or commands via the srcintf parameter during Firewall Policy Creation. network low complexity fortinet CWE-79	6.1
2017-05-27	CVE-2017-7731	Weak Password Recovery Mechanism for Forgotten Password vulnerability in Fortinet Fortiportal A weak password recovery vulnerability in Fortinet FortiPortal versions 4.0.0 and below allows attacker to carry out information disclosure via the Forgotten Password feature. network low complexity fortinet CWE-640	7.5
2017-05-27	CVE-2017-7343	Open Redirect vulnerability in Fortinet Fortiportal An open redirect vulnerability in Fortinet FortiPortal 4.0.0 and below allows attacker to execute unauthorized code or commands via the url parameter. network low complexity fortinet CWE-601	6.1
2017-05-27	CVE-2017-7339	Cross-site Scripting vulnerability in Fortinet Fortiportal A Cross-Site Scripting vulnerability in Fortinet FortiPortal versions 4.0.0 and below allows an attacker to execute unauthorized code or commands via the 'Name' and 'Description' inputs in the 'Add Revision Backup' functionality. network low complexity fortinet CWE-79	6.1
2017-05-27	CVE-2017-7338	Information Exposure vulnerability in Fortinet Fortiportal A password management vulnerability in Fortinet FortiPortal versions 4.0.0 and below allows an attacker to carry out information disclosure via the FortiAnalyzer Management View. network low complexity fortinet CWE-200	7.5

Vulnerabilities > Fortinet {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Fortinet"}]}

Vulnerabilities > Fortinet