Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-49938 |
|
Vulnerability in fortinet (CVE-2026-49938)
vulnerability in fortinet (CVE-2026-49938). Confidential information can be exposed externally.
|
| CVE-2026-25089 |
|
OS Command Injection in fortinet (CVE-2026-25089)
OS command injection in fortinet (CVE-2026-25089). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44277 |
|
Vulnerability in fortinet (CVE-2026-44277)
vulnerability in fortinet (CVE-2026-44277). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44278 |
|
Vulnerability in fortinet (CVE-2026-44278)
vulnerability in fortinet (CVE-2026-44278). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-25690 |
|
Vulnerability in fortinet (CVE-2026-25690)
vulnerability in fortinet (CVE-2026-25690). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-53681 |
|
SQL Injection in sqli (CVE-2025-53681)
SQL injection in sqli (CVE-2025-53681). Successful exploitation can lead to full system takeover.
|
| CVE-2025-53680 |
|
OS Command Injection in fortinet (CVE-2025-53680)
OS command injection in fortinet (CVE-2025-53680). Successful exploitation can lead to full system takeover.
|
| CVE-2025-53844 |
|
Out-of-Bounds Write in fortinet (CVE-2025-53844)
out-of-bounds write in fortinet (CVE-2025-53844). Successful exploitation can lead to full system takeover.
|
| CVE-2025-53870 |
|
OS Command Injection in fortinet (CVE-2025-53870)
OS command injection in fortinet (CVE-2025-53870). Successful exploitation can lead to full system takeover.
|
| CVE-2026-26083 |
|
Vulnerability in fortinet (CVE-2026-26083)
vulnerability in fortinet (CVE-2026-26083). Successful exploitation can lead to full system takeover.
|
| CVE-2026-25088 |
|
SQL Injection in sqli (CVE-2026-25088)
SQL injection in sqli (CVE-2026-25088). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-61624 |
|
Path Traversal in path-traversal (CVE-2025-61624)
path traversal in path-traversal (CVE-2025-61624). Data can be tampered with by attackers.
|
| CVE-2025-53847 |
|
Vulnerability in fortinet (CVE-2025-53847)
vulnerability in fortinet (CVE-2025-53847). Data can be tampered with by attackers.
|
| CVE-2026-21643 KEV |
|
[KEV] SQL Injection in Fortinet forticlient-ems (CVE-2026-21643)
SQL injection in Fortinet forticlient-ems (CVE-2026-21643). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-35616 KEV |
|
[KEV] Vulnerability in Fortinet forticlient-ems (CVE-2026-35616)
vulnerability in Fortinet forticlient-ems (CVE-2026-35616). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-25836 |
|
OS Command Injection in fortinet (CVE-2026-25836)
OS command injection in fortinet (CVE-2026-25836). Successful exploitation can lead to full system takeover.
|
| CVE-2025-64157 |
|
Vulnerability in fortinet (CVE-2025-64157)
vulnerability in fortinet (CVE-2025-64157). Successful exploitation can lead to full system takeover.
|
| CVE-2025-55018 |
|
Vulnerability in fortinet (CVE-2025-55018)
vulnerability in fortinet (CVE-2025-55018). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24858 KEV |
|
[KEV] Vulnerability in Fortinet multiple-products (CVE-2026-24858)
vulnerability in Fortinet multiple-products (CVE-2026-24858). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2025-25249 |
|
Vulnerability in fortinet (CVE-2025-25249)
vulnerability in fortinet (CVE-2025-25249). Successful exploitation can lead to full system takeover.
|
| CVE-2025-59718 KEV |
|
[KEV] Vulnerability in Fortinet multiple-products (CVE-2025-59718)
vulnerability in Fortinet multiple-products (CVE-2025-59718). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2025-59719 |
|
Vulnerability in fortinet (CVE-2025-59719)
vulnerability in fortinet (CVE-2025-59719). Successful exploitation can lead to full system takeover.
|
| CVE-2025-53679 |
|
OS Command Injection in fortinet (CVE-2025-53679)
OS command injection in fortinet (CVE-2025-53679). Successful exploitation can lead to full system takeover.
|
| CVE-2025-58413 |
|
Vulnerability in fortinet (CVE-2025-58413)
vulnerability in fortinet (CVE-2025-58413). Successful exploitation can lead to full system takeover.
|
| CVE-2025-54821 |
|
Privilege Escalation in fortinet (CVE-2025-54821)
vulnerability in fortinet (CVE-2025-54821). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-53843 |
|
Vulnerability in fortinet (CVE-2025-53843)
vulnerability in fortinet (CVE-2025-53843). Successful exploitation can lead to full system takeover.
|
| CVE-2025-58034 KEV |
|
[KEV] OS Command Injection in Fortinet fortiweb (CVE-2025-58034)
OS command injection in Fortinet fortiweb (CVE-2025-58034). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-64446 KEV |
|
[KEV] Vulnerability in Fortinet fortiweb (CVE-2025-64446)
vulnerability in Fortinet fortiweb (CVE-2025-64446). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-57740 |
|
Vulnerability in fortinet (CVE-2025-57740)
vulnerability in fortinet (CVE-2025-57740). Successful exploitation can lead to full system takeover.
|
| CVE-2025-47890 |
|
Open Redirect in fortinet (CVE-2025-47890)
vulnerability in fortinet (CVE-2025-47890). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-31514 |
|
Vulnerability in fortinet (CVE-2025-31514)
vulnerability in fortinet (CVE-2025-31514). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-31366 |
|
Cross-Site Scripting (XSS) in fortinet (CVE-2025-31366)
cross-site scripting in fortinet (CVE-2025-31366). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-22862 |
|
Vulnerability in fortinet (CVE-2025-22862)
vulnerability in fortinet (CVE-2025-22862). Successful exploitation can lead to full system takeover.
|
| CVE-2025-25248 |
|
Vulnerability in fortinet (CVE-2025-25248)
vulnerability in fortinet (CVE-2025-25248). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-25257 KEV |
|
[KEV] SQL Injection in Fortinet fortiweb (CVE-2025-25257)
SQL injection in Fortinet fortiweb (CVE-2025-25257). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-55599 |
|
Vulnerability in fortinet (CVE-2024-55599)
vulnerability in fortinet (CVE-2024-55599). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-6693 KEV |
|
[KEV] Vulnerability in Fortinet fortios (CVE-2019-6693)
vulnerability in Fortinet fortios (CVE-2019-6693). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-25250 |
|
Information Disclosure in fortinet (CVE-2025-25250)
vulnerability in fortinet (CVE-2025-25250). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-24471 |
|
Vulnerability in fortinet (CVE-2025-24471)
vulnerability in fortinet (CVE-2025-24471). Data can be tampered with by attackers.
|
| CVE-2025-32756 KEV |
|
[KEV] Vulnerability in Fortinet multiple-products (CVE-2025-32756)
vulnerability in Fortinet multiple-products (CVE-2025-32756). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-32122 |
|
Vulnerability in fortinet (CVE-2024-32122)
vulnerability in fortinet (CVE-2024-32122). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-24472 KEV |
|
[KEV] Vulnerability in Fortinet fortios-and-fortiproxy (CVE-2025-24472)
vulnerability in Fortinet fortios-and-fortiproxy (CVE-2025-24472). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2024-48885 |
|
Path Traversal in path-traversal (CVE-2024-48885)
path traversal in path-traversal (CVE-2024-48885). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-52963 |
|
Out-of-Bounds Write in dos (CVE-2024-52963)
out-of-bounds write in dos (CVE-2024-52963). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-48884 |
|
Path Traversal in path-traversal (CVE-2024-48884)
path traversal in path-traversal (CVE-2024-48884). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-35276 |
|
Vulnerability in fortinet (CVE-2024-35276)
vulnerability in fortinet (CVE-2024-35276). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-55591 KEV |
|
[KEV] Vulnerability in Fortinet fortios-and-fortiproxy (CVE-2024-55591)
vulnerability in Fortinet fortios-and-fortiproxy (CVE-2024-55591). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2024-47575 KEV |
|
[KEV] Vulnerability in Fortinet fortimanager (CVE-2024-47575)
vulnerability in Fortinet fortimanager (CVE-2024-47575). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-23113 KEV |
|
[KEV] Vulnerability in Fortinet multiple-products (CVE-2024-23113)
vulnerability in Fortinet multiple-products (CVE-2024-23113). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-23669 |
|
Vulnerability in fortinet (CVE-2024-23669)
vulnerability in fortinet (CVE-2024-23669). Confidential information can be exposed externally.
|