FortiGuard Labs | FortiGuard Center - IR Advisories

Blind SQL Injection

https://fortiguard.fortinet.com/psirt/FG-IR-24-128

Publish Date: Tue, 11 Jun 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

Buffer overflow in fgfmd

https://fortiguard.fortinet.com/psirt/FG-IR-24-036

Publish Date: Tue, 11 Jun 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

FortiOS/FortiProxy - XSS in reboot page

https://fortiguard.fortinet.com/psirt/FG-IR-23-471

Publish Date: Tue, 11 Jun 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

FortiSOAR is vulnerable to sql injection in Event Auth API via uuid parameter

https://fortiguard.fortinet.com/psirt/FG-IR-23-495

Publish Date: Tue, 11 Jun 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

Multiple buffer overflows in diag npu command

https://fortiguard.fortinet.com/psirt/FG-IR-23-460

Publish Date: Tue, 11 Jun 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

Stack buffer overflow on bluetooth write feature

https://fortiguard.fortinet.com/psirt/FG-IR-23-356

Publish Date: Tue, 11 Jun 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

TunnelVision - CVE-2024-3661

https://fortiguard.fortinet.com/psirt/FG-IR-24-170

Publish Date: Tue, 11 Jun 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

Weak key derivation for backup file

https://fortiguard.fortinet.com/psirt/FG-IR-23-423

Publish Date: Tue, 11 Jun 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

Buffer overflow in administrative interface

https://fortiguard.fortinet.com/psirt/FG-IR-23-415

Publish Date: Tue, 14 May 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

Client IP relies on X-Forwarded-For and other headers

https://fortiguard.fortinet.com/psirt/FG-IR-24-021

Publish Date: Tue, 14 May 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

Client-side enforcement of server-side security related to customer reports features

https://fortiguard.fortinet.com/psirt/FG-IR-23-406

Publish Date: Tue, 14 May 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

Code injection in playbook code snippet step

https://fortiguard.fortinet.com/psirt/FG-IR-23-420

Publish Date: Tue, 14 May 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

Double free with double usage of json_object_put

https://fortiguard.fortinet.com/psirt/FG-IR-23-195

Publish Date: Tue, 14 May 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

Exposure of password hashes to read-only admin

https://fortiguard.fortinet.com/psirt/FG-IR-23-433

Publish Date: Tue, 14 May 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

Format String Bug in cli command

https://fortiguard.fortinet.com/psirt/FG-IR-23-137

Publish Date: Tue, 14 May 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

FortiAuthenticator - Open Redirect on /portal/disclaimer

https://fortiguard.fortinet.com/psirt/FG-IR-23-465

Publish Date: Tue, 14 May 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

HTTP/2 CONTINUATION Frames Vulnerability

https://fortiguard.fortinet.com/psirt/FG-IR-24-120

Publish Date: Tue, 14 May 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

IDOR over SIP configuration file

https://fortiguard.fortinet.com/psirt/FG-IR-23-282

Publish Date: Tue, 14 May 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

Information disclosure in content hub

https://fortiguard.fortinet.com/psirt/FG-IR-24-052

Publish Date: Tue, 14 May 2024 00:00:00 -0700


FortiGuard Labs | FortiGuard Center - IR Advisories

Multiple improper input validation and authorization vulnerabilities

https://fortiguard.fortinet.com/psirt/FG-IR-23-222

Publish Date: Tue, 14 May 2024 00:00:00 -0700