CVE-2024-48887 CVSS:9.8

An unverified password change vulnerability in Fortinet FortiSwitch GUI may allow a remote unauthenticated attacker to change admin passwords via a specially crafted request

CVE-2024-54024 CVSS:7.2

A critical vulnerability exists in Fortinet FortiIsolator versions before 2.4.6 involving OS Command Injection. This security flaw allows a privileged attacker with super-admin profile and Command Line Interface (CLI) access to execute unauthorized code through specially crafted HTTP requests. The vulnerability relates to improper neutralization of special elements used in OS commands.

CVE-2025-25254 CVSS:7.2

An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in FortiWeb version 7.6.2 and below, version 7.4.6 and below, 7.2 all versions, 7.0 all versions endpoint may allow an authenticated admin to access and modify the filesystem via crafted requests.

CVE-2025-22855 CVSS:2.7

An improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in Fortinet FortiClient before 7.4.1 may allow the EMS administrator to send messages containing javascript code.

CVE-2024-54025 CVSS:6.7

An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in Fortinet FortiIsolator CLI before version 2.4.6 allows a privileged malicious user to execute unauthorized code or commands via crafted CLI requests.

CVE-2024-52962 CVSS:5.3

An Improper Output Neutralization for Logs vulnerability in FortiAnalyzer version 7.6.1 and below, version 7.4.5 and below, version 7.2.8 and below, version 7.0.13 and below and FortiManager version 7.6.1 and below, version 7.4.5 and below, version 7.2.8 and below, version 7.0.12 and below may allow an unauthenticated remote malicious user to pollute the logs via crafted login requests.

CVE-2024-46671 CVSS:6.2

An Incorrect User Management vulnerability in FortiWeb version 7.6.2 and below, version 7.4.6 and below, version 7.2.10 and below, version 7.0.11 and below widgets dashboard may allow an authenticated attacker with at least read-only admin permission to perform operations on the dashboard of other administrators via crafted requests.

 CVE-2024-50565 CVSS:3.1

A improper restriction of communication channel to intended endpoints vulnerability in Fortinet FortiOS, Fortinet FortiProxy, Fortinet FortiManager, Fortinet FortiAnalyzer, Fortinet FortiVoice and Fortinet FortiWeb allows an unauthenticated attacker in a man-in-the-middle position to impersonate the management device (FortiCloud server or/and in certain conditions, FortiManager), via intercepting the FGFM authentication request between the management device and the managed device.

CVE-2024-32122 CVSS:2.3

A storing password in a recoverable format in Fortinet FortiOS versions 7.2.0 up to and including 7.2.1 allows malicious user to information disclosure via modification of LDAP server IP to point to a malicious server.

CVE-2024-26013 CVSS:7.5

A improper restriction of communication channel to intended endpoints vulnerability in Fortinet FortiOS, Fortinet FortiProxy, Fortinet FortiManager, Fortinet FortiAnalyzer, Fortinet FortiVoice and Fortinet FortiWeb may allow an unauthenticated attacker in a man-in-the-middle position to impersonate the management device (FortiCloud server or/and in certain conditions, FortiManager), via intercepting the FGFM authentication request between the management device and the managed device

CVE-2023-37930 CVSS:7.5

Fortinet FortiOS and FortiProxy SSL VPN webmode are vulnerable to memory corruption issues across multiple versions. Uninitialized resources and excessive iteration flaws exist in FortiOS SSL VPN, as well as FortiProxy SSL VPN. These vulnerabilities can allow a VPN user to corrupt memory, potentially enabling code or command execution through specially crafted requests. The issues are related to use of uninitialized resource and excessive iteration and could pose significant security risks for affected systems.