Medium

CVE-2025-31104 CVSS:7.2

An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78] in FortiADC versions may allow an authenticated attacker to execute unauthorized code via crafted HTTP requests.

CVE-2025-24471 CVSS:6.5

An Improper Certificate Validation vulnerability [CWE-295] in FortiOS may allow an EAP verified remote user to connect from FortiClient via revoked certificate.

CVE-2025-22256 CVSS:6.3

A improper handling of insufficient permissions or privileges in Fortinet FortiPAM, FortiSRA allows attacker to improper access control via specially crafted HTTP requests

CVE-2024-50562 CVSS:4.8

An Insufficient Session Expiration vulnerability [CWE-613] in FortiOS SSL-VPN versions may allow an attacker in possession of a cookie used to log in the SSL-VPN portal to log in again, although the session has expired or was logged out.

CVE-2024-45329 CVSS:4.3

A authorization bypass through user-controlled key in Fortinet FortiPortal versions may allow an authenticated attacker to view unauthorized device information via key modification in API requests.

CVE-2024-32119 CVSS:4.8

An improper authentication vulnerability [CWE-287] in Fortinet FortiClientEMS allows an unauthenticated attacker with the knowledge of the targeted user's FCTUID and VDOM to perform operations such as uploading or tagging on behalf of the targeted user via specially crafted TCP requests.