← Find more feeds

fortiguard.com

FortiGuard Labs | FortiGuard Center - IR Advisories

Get the latest updates from FortiGuard Labs | FortiGuard Center - IR Advisories directly as they happen.

Follow now 82 followers

Latest posts

Last updated 10 days ago

Out-Of-Bounds Write in administrative interface

9 days ago

CVSSv3 Score: 6.7 An out-of-bounds write vulnerability [CWE-787] in FortiWeb CGI daemon...

Read full

Hardcoded symmetric encryption key for Postgresql

10 days ago

CVSSv3 Score: 5.2 A use of hard-coded cryptographic key vulnerability [CWE 321]...

Read full

2FA request can be replayed without a valid token after one successful request

10 days ago

CVSSv3 Score: 6.7 An Improper authentication vulnerability [CWE-287] in FortiSOAR web GUI...

Read full

Clear-text credentials retrievable with IP modification for LDAP

10 days ago

CVSSv3 Score: 4.1 A Storing Passwords in a Recoverable Format vulnerability [CWE-257]...

Read full

Cleartext Credentials in response for API endpoints

10 days ago

CVSSv3 Score: 6.2 A Cleartext Transmission of Sensitive Information vulnerability [CWE-319] in...

Read full

Multiple SQL Injections

10 days ago

CVSSv3 Score: 7.1 An Improper Neutralization of Special Elements used in an...

Read full

Integer Overflow Denial of Service in administrative interface

10 days ago

CVSSv3 Score: 4.4 An Integer Overflow or Wraparound vulnerability [CWE-190] in FortiWeb...

Read full

Multiple Path traversals in CLI

10 days ago

CVSSv3 Score: 6.2 Multiple Relative Path Traversal vulnerabilities [CWE-23] in FortiWeb may...

Read full

Heap-based buffer overflow in oftpd daemon

10 days ago

CVSSv3 Score: 7.3 A heap-based buffer overflow vulnerability [CWE-122] in FortiAnalyzer Cloud...

Read full

Missing Authentication for critical function in CAPWAP daemon

10 days ago

CVSSv3 Score: 6.2 A missing authentication for critical function vulnerability [CWE-306] in...

Read full

Credential disclosure in LDAP configuration web page.

10 days ago

CVSSv3 Score: 2.5 An Insufficiently protected credentials vulnerability [CWE-522] in FortiSanbox and...

Read full

Arbitrary directory delete on vmimages delete feature

10 days ago

CVSSv3 Score: 6.2 An Improper Limitation of a Pathname to a Restricted...

Read full

Or log in

Everything you care about in one place

FortiGuard Labs | FortiGuard Center - IR Advisories

Latest posts

Out-Of-Bounds Write in administrative interface

Hardcoded symmetric encryption key for Postgresql

2FA request can be replayed without a valid token after one successful request

Clear-text credentials retrievable with IP modification for LDAP

Cleartext Credentials in response for API endpoints

Multiple SQL Injections

Integer Overflow Denial of Service in administrative interface

Multiple Path traversals in CLI

Heap-based buffer overflow in oftpd daemon

Missing Authentication for critical function in CAPWAP daemon

Credential disclosure in LDAP configuration web page.

Arbitrary directory delete on vmimages delete feature

Try Feeder for free