← Find more feeds

fortiguard.com

FortiGuard Labs | FortiGuard Center - IR Advisories

Get the latest updates from FortiGuard Labs | FortiGuard Center - IR Advisories directly as they happen.

Follow now 82 followers

Latest posts

Last updated 3 days ago

Arbitrary file deletion in administrative interface

3 days ago

CVSSv3 Score: 5.7 An improper limitation of a pathname to a restricted...

Read full

Heap-based buffer overflow in cw_acd daemon

3 days ago

CVSSv3 Score: 7.4 A heap-based buffer overflow vulnerability [CWE-122] in FortiOS and...

Read full

Authenticated SQL injection in API endpoint

3 days ago

CVSSv3 Score: 6.8 An improper neutralization of special elements used in an...

Read full

SSRF in GUI console

3 days ago

CVSSv3 Score: 3.4 A Server-Side Request Forgery (SSRF) vulnerability [CWE-918] in FortiSandbox...

Read full

Unauthenticated access to local configuration

3 days ago

CVSSv3 Score: 9.3 An exposure of sensitive information to an unauthorized actor...

Read full

Unauthenticated remote command injection

3 days ago

CVSSv3 Score: 9.4 An improper neutralization of special elements used in an...

Read full

Missing authorization on log access

about 1 month ago

CVSSv3 Score: 2.6 A Direct Request ('Forced Browsing') [CWE-425] vulnerability in FortiAuthenticator...

Read full

Incorrect authorization in multi-vdom environment

about 1 month ago

CVSSv3 Score: 6.4 An Incorrect Authorization vulnerability [CWE-863] in FortiPortal may allow...

Read full

Multiple authenticated OS Command Injections via API

about 1 month ago

CVSSv3 Score: 6.7 An OS command injection vulnerabtility [CWE-78] in FortiExtender API...

Read full

Multiple Fortinet Products' FortiCloud SSO Login Authentication Bypass

about 1 month ago

CVSSv3 Score: 9.1 An Improper Verification of Cryptographic Signature vulnerability[CWE-347] in FortiOS,...

Read full

Multiple authenticated SQL injection via extraParam

about 1 month ago

CVSSv3 Score: 6.8 An improper neutralization of special elements used in an...

Read full

OS command injection in GUI backup options

about 1 month ago

CVSSv3 Score: 6.9 An improper neutralization of special elements used in an...

Read full

Or log in

Everything you care about in one place

FortiGuard Labs | FortiGuard Center - IR Advisories

Latest posts

Arbitrary file deletion in administrative interface

Heap-based buffer overflow in cw_acd daemon

Authenticated SQL injection in API endpoint

SSRF in GUI console

Unauthenticated access to local configuration

Unauthenticated remote command injection

Missing authorization on log access

Incorrect authorization in multi-vdom environment

Multiple authenticated OS Command Injections via API

Multiple Fortinet Products' FortiCloud SSO Login Authentication Bypass

Multiple authenticated SQL injection via extraParam

OS command injection in GUI backup options

Try Feeder for free