FortiGuard Labs \| FortiGuard Center - IR Advisories
GUI Console WebSockets do not terminate on logout https://fortiguard.fortinet.com/psirt/FG-IR-22-445 Publish Date: Tue, 13 Aug 2024 00:00:00 -0700

GUI Console WebSockets do not terminate on logout

https://fortiguard.fortinet.com/psirt/FG-IR-22-445

Publish Date: Tue, 13 Aug 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
OS command injections in execute CLI commands https://fortiguard.fortinet.com/psirt/FG-IR-22-047 Publish Date: Tue, 13 Aug 2024 00:00:00 -0700

OS command injections in execute CLI commands

https://fortiguard.fortinet.com/psirt/FG-IR-22-047

Publish Date: Tue, 13 Aug 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Priviledged admin able to modify super-admins password https://fortiguard.fortinet.com/psirt/FG-IR-23-467 Publish Date: Tue, 13 Aug 2024 00:00:00 -0700

Priviledged admin able to modify super-admins password

https://fortiguard.fortinet.com/psirt/FG-IR-23-467

Publish Date: Tue, 13 Aug 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
RADIUS Protocol CVE-2024-3596 https://fortiguard.fortinet.com/psirt/FG-IR-24-255 Publish Date: Tue, 13 Aug 2024 00:00:00 -0700

RADIUS Protocol CVE-2024-3596

https://fortiguard.fortinet.com/psirt/FG-IR-24-255

Publish Date: Tue, 13 Aug 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Real-time file system integrity checking write protection bypass https://fortiguard.fortinet.com/psirt/FG-IR-24-012 Publish Date: Tue, 13 Aug 2024 00:00:00 -0700

Real-time file system integrity checking write protection bypass

https://fortiguard.fortinet.com/psirt/FG-IR-24-012

Publish Date: Tue, 13 Aug 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
XSS vulnerability in communications triggered in playbooks https://fortiguard.fortinet.com/psirt/FG-IR-23-088 Publish Date: Tue, 13 Aug 2024 00:00:00 -0700

XSS vulnerability in communications triggered in playbooks

https://fortiguard.fortinet.com/psirt/FG-IR-23-088

Publish Date: Tue, 13 Aug 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
FortiMail - SMTP Smuggling https://fortiguard.fortinet.com/psirt/FG-IR-24-009 Publish Date: Thu, 18 Jul 2024 15:09:20 -0700

FortiMail - SMTP Smuggling

https://fortiguard.fortinet.com/psirt/FG-IR-24-009

Publish Date: Thu, 18 Jul 2024 15:09:20 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Cross site scripting vulnerability in SSL VPN web UI https://fortiguard.fortinet.com/psirt/FG-IR-23-485 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

Cross site scripting vulnerability in SSL VPN web UI

https://fortiguard.fortinet.com/psirt/FG-IR-23-485

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
FortiAIOps - CSV Injection in export device inventory feature https://fortiguard.fortinet.com/psirt/FG-IR-24-073 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiAIOps - CSV Injection in export device inventory feature

https://fortiguard.fortinet.com/psirt/FG-IR-24-073

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
FortiAIOps - Cross-site request forgery https://fortiguard.fortinet.com/psirt/FG-IR-24-070 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiAIOps - Cross-site request forgery

https://fortiguard.fortinet.com/psirt/FG-IR-24-070

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
FortiAIOps - Improper Session Management https://fortiguard.fortinet.com/psirt/FG-IR-24-069 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiAIOps - Improper Session Management

https://fortiguard.fortinet.com/psirt/FG-IR-24-069

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
FortiAIOps - Sensitive Information leak to an Unauthorized Actor https://fortiguard.fortinet.com/psirt/FG-IR-24-072 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiAIOps - Sensitive Information leak to an Unauthorized Actor

https://fortiguard.fortinet.com/psirt/FG-IR-24-072

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
FortiOS - IP address validation mishandles zero characters https://fortiguard.fortinet.com/psirt/FG-IR-23-446 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiOS - IP address validation mishandles zero characters

https://fortiguard.fortinet.com/psirt/FG-IR-23-446

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Improper access control vulnerability in administrative interface https://fortiguard.fortinet.com/psirt/FG-IR-23-469 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

Improper access control vulnerability in administrative interface

https://fortiguard.fortinet.com/psirt/FG-IR-23-469

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Insecure Direct Object Reference in policy API Endpoint https://fortiguard.fortinet.com/psirt/FG-IR-24-011 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

Insecure Direct Object Reference in policy API Endpoint

https://fortiguard.fortinet.com/psirt/FG-IR-24-011

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Multiple lack of client-side certificate validation when establishing secure connections https://fortiguard.fortinet.com/psirt/FG-IR-22-298 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

Multiple lack of client-side certificate validation when establishing secure connections

https://fortiguard.fortinet.com/psirt/FG-IR-22-298

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
OpenSSH regreSSHion Attack (CVE-2024-6387) https://fortiguard.fortinet.com/psirt/FG-IR-24-258 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

OpenSSH regreSSHion Attack (CVE-2024-6387)

https://fortiguard.fortinet.com/psirt/FG-IR-24-258

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Privilege escalation from low privilege administrator https://fortiguard.fortinet.com/psirt/FG-IR-23-459 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

Privilege escalation from low privilege administrator

https://fortiguard.fortinet.com/psirt/FG-IR-23-459

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
[FortiADC] Lack of client-side certificate validation when establishing secure connections with public SDN connectors https://fortiguard.fortinet.com/psirt/FG-IR-23-480 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

[FortiADC] Lack of client-side certificate validation when establishing secure connections with public SDN connectors

https://fortiguard.fortinet.com/psirt/FG-IR-23-480

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
[FortiWeb] Lack of client-side certificate validation when establishing secure connections https://fortiguard.fortinet.com/psirt/FG-IR-22-326 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

[FortiWeb] Lack of client-side certificate validation when establishing secure connections

https://fortiguard.fortinet.com/psirt/FG-IR-22-326

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700