FortiGuard Labs \| FortiGuard Center - IR Advisories
FortiMail - SMTP Smuggling https://fortiguard.fortinet.com/psirt/FG-IR-24-009 Publish Date: Thu, 18 Jul 2024 15:09:20 -0700

FortiMail - SMTP Smuggling

https://fortiguard.fortinet.com/psirt/FG-IR-24-009

Publish Date: Thu, 18 Jul 2024 15:09:20 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Cross site scripting vulnerability in SSL VPN web UI https://fortiguard.fortinet.com/psirt/FG-IR-23-485 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

Cross site scripting vulnerability in SSL VPN web UI

https://fortiguard.fortinet.com/psirt/FG-IR-23-485

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
FortiAIOps - CSV Injection in export device inventory feature https://fortiguard.fortinet.com/psirt/FG-IR-24-073 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiAIOps - CSV Injection in export device inventory feature

https://fortiguard.fortinet.com/psirt/FG-IR-24-073

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
FortiAIOps - Cross-site request forgery https://fortiguard.fortinet.com/psirt/FG-IR-24-070 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiAIOps - Cross-site request forgery

https://fortiguard.fortinet.com/psirt/FG-IR-24-070

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
FortiAIOps - Improper Session Management https://fortiguard.fortinet.com/psirt/FG-IR-24-069 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiAIOps - Improper Session Management

https://fortiguard.fortinet.com/psirt/FG-IR-24-069

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
FortiAIOps - Sensitive Information leak to an Unauthorized Actor https://fortiguard.fortinet.com/psirt/FG-IR-24-072 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiAIOps - Sensitive Information leak to an Unauthorized Actor

https://fortiguard.fortinet.com/psirt/FG-IR-24-072

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
FortiOS - IP address validation mishandles zero characters https://fortiguard.fortinet.com/psirt/FG-IR-23-446 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiOS - IP address validation mishandles zero characters

https://fortiguard.fortinet.com/psirt/FG-IR-23-446

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Improper access control vulnerability in administrative interface https://fortiguard.fortinet.com/psirt/FG-IR-23-469 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

Improper access control vulnerability in administrative interface

https://fortiguard.fortinet.com/psirt/FG-IR-23-469

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Insecure Direct Object Reference in policy API Endpoint https://fortiguard.fortinet.com/psirt/FG-IR-24-011 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

Insecure Direct Object Reference in policy API Endpoint

https://fortiguard.fortinet.com/psirt/FG-IR-24-011

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Multiple lack of client-side certificate validation when establishing secure connections https://fortiguard.fortinet.com/psirt/FG-IR-22-298 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

Multiple lack of client-side certificate validation when establishing secure connections

https://fortiguard.fortinet.com/psirt/FG-IR-22-298

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
OpenSSH regreSSHion Attack (CVE-2024-6387) https://fortiguard.fortinet.com/psirt/FG-IR-24-258 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

OpenSSH regreSSHion Attack (CVE-2024-6387)

https://fortiguard.fortinet.com/psirt/FG-IR-24-258

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Privilege escalation from low privilege administrator https://fortiguard.fortinet.com/psirt/FG-IR-23-459 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

Privilege escalation from low privilege administrator

https://fortiguard.fortinet.com/psirt/FG-IR-23-459

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
[FortiADC] Lack of client-side certificate validation when establishing secure connections with public SDN connectors https://fortiguard.fortinet.com/psirt/FG-IR-23-480 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

[FortiADC] Lack of client-side certificate validation when establishing secure connections with public SDN connectors

https://fortiguard.fortinet.com/psirt/FG-IR-23-480

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
[FortiWeb] Lack of client-side certificate validation when establishing secure connections https://fortiguard.fortinet.com/psirt/FG-IR-22-326 Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

[FortiWeb] Lack of client-side certificate validation when establishing secure connections

https://fortiguard.fortinet.com/psirt/FG-IR-22-326

Publish Date: Tue, 09 Jul 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Blind SQL Injection https://fortiguard.fortinet.com/psirt/FG-IR-24-128 Publish Date: Tue, 11 Jun 2024 00:00:00 -0700

Blind SQL Injection

https://fortiguard.fortinet.com/psirt/FG-IR-24-128

Publish Date: Tue, 11 Jun 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Buffer overflow in fgfmd https://fortiguard.fortinet.com/psirt/FG-IR-24-036 Publish Date: Tue, 11 Jun 2024 00:00:00 -0700

Buffer overflow in fgfmd

https://fortiguard.fortinet.com/psirt/FG-IR-24-036

Publish Date: Tue, 11 Jun 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
FortiOS/FortiProxy - XSS in reboot page https://fortiguard.fortinet.com/psirt/FG-IR-23-471 Publish Date: Tue, 11 Jun 2024 00:00:00 -0700

FortiOS/FortiProxy - XSS in reboot page

https://fortiguard.fortinet.com/psirt/FG-IR-23-471

Publish Date: Tue, 11 Jun 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
FortiSOAR is vulnerable to sql injection in Event Auth API via uuid parameter https://fortiguard.fortinet.com/psirt/FG-IR-23-495 Publish Date: Tue, 11 Jun 2024 00:00:00 -0700

FortiSOAR is vulnerable to sql injection in Event Auth API via uuid parameter

https://fortiguard.fortinet.com/psirt/FG-IR-23-495

Publish Date: Tue, 11 Jun 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Multiple buffer overflows in diag npu command https://fortiguard.fortinet.com/psirt/FG-IR-23-460 Publish Date: Tue, 11 Jun 2024 00:00:00 -0700

Multiple buffer overflows in diag npu command

https://fortiguard.fortinet.com/psirt/FG-IR-23-460

Publish Date: Tue, 11 Jun 2024 00:00:00 -0700

FortiGuard Labs \| FortiGuard Center - IR Advisories
Stack buffer overflow on bluetooth write feature https://fortiguard.fortinet.com/psirt/FG-IR-23-356 Publish Date: Tue, 11 Jun 2024 00:00:00 -0700

Stack buffer overflow on bluetooth write feature

https://fortiguard.fortinet.com/psirt/FG-IR-23-356

Publish Date: Tue, 11 Jun 2024 00:00:00 -0700