← Find more feeds

fortiguard.com

FortiGuard Labs | FortiGuard Center - IR Advisories

Get the latest updates from FortiGuard Labs | FortiGuard Center - IR Advisories directly as they happen.

Follow now 111 followers

Latest posts

Last updated 4 days ago

Reflected XSS in HA cluster

4 days ago

CVSSv3 Score: 5.3 An Improper Neutralization of Input During Web Page Generation...

Read full

Current password requirement bypass for self password change

4 days ago

CVSSv3 Score: 6.5 An Unverified Password Change vulnerability [CWE-620] in FortiSOAR may...

Read full

OS command injection in GUI backup options

4 days ago

CVSSv3 Score: 6.9 An improper neutralization of special elements used in an...

Read full

Multiple Fortinet Products' FortiCloud SSO Login Authentication Bypass

4 days ago

CVSSv3 Score: 9.1 An Improper Verification of Cryptographic Signature vulnerability[CWE-347] in FortiOS,...

Read full

Insertion of sensitive information into REST API logs

4 days ago

CVSSv3 Score: 6.3 An insertion of sensitive information into log file vulnerability...

Read full

Broken access control on API endpoints

4 days ago

CVSSv3 Score: 6.2 An Improper access control vulnerability [CWE-284] in FortiSOAR may...

Read full

Missing authorization on log access

4 days ago

CVSSv3 Score: 2.6 A Direct Request ('Forced Browsing') [CWE-425] vulnerability in FortiAuthenticator...

Read full

Insufficient Session Expiration in SSLVPN

4 days ago

CVSSv3 Score: 5.3 An Insufficient Session Expiration vulnerability [CWE-613] in FortiOS SSLVPN...

Read full

Multiple authenticated OS Command Injections via API

4 days ago

CVSSv3 Score: 6.7 An OS command injection vulnerabtility [CWE-78] in FortiExtender API...

Read full

Capacity to forge authentication cookies

4 days ago

CVSSv3 Score: 7.1 A reliance on cookie without validation or integrity checking...

Read full

Multiple authenticated SQL injection via extraParam

4 days ago

CVSSv3 Score: 6.8 An improper neutralization of special elements used in an...

Read full

Capacity to use password hashes instead of password for authentication

4 days ago

CVSSv3 Score: 4.4 A use of password hash instead of password for...

Read full

Or log in

Everything you care about in one place

FortiGuard Labs | FortiGuard Center - IR Advisories

Latest posts

Reflected XSS in HA cluster

Current password requirement bypass for self password change

OS command injection in GUI backup options

Multiple Fortinet Products' FortiCloud SSO Login Authentication Bypass

Insertion of sensitive information into REST API logs

Broken access control on API endpoints

Missing authorization on log access

Insufficient Session Expiration in SSLVPN

Multiple authenticated OS Command Injections via API

Capacity to forge authentication cookies

Multiple authenticated SQL injection via extraParam

Capacity to use password hashes instead of password for authentication

Try Feeder for free