Fortinet Fortios
Approved changes feed: RSS · Atom
cpe:2.3:a:fortinet,_inc.:fortinet_fortios:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Fortinet, Inc. (773fb5aa-3c05-572f-a299-a4d7a511c4a7) |
|---|---|
| Product | Fortinet Fortios (e2696745-c5ea-536e-8ba2-bac94133f015) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-13376 |
vulnerable | 2026-06-03 14:38:10.492134 |
Details available
An uninitialized memory buffer leak exists in Fortinet FortiOS 5.6.1 to 5.6.3, 5.4.6 to 5.4.7, 5.2 all versions under web proxy's disclaimer response web pages, potentially causing sensitive data to be displayed in the HTTP response.
Published: 2018-11-27T15:00:00.000Z
Updated: 2024-10-25T14:31:22.847Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-7735 |
vulnerable | 2026-06-03 14:37:37.971412 |
Details available
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.2.0 through 5.2.11 and 5.4.0 through 5.4.4 allows attackers to execute unauthorized code or commands via the "Groups" input while creating or editing User Groups.
Published: 2017-09-12T02:00:00.000Z
Updated: 2024-10-25T14:11:52.628Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-7734 |
vulnerable | 2026-06-03 14:37:37.970749 |
Details available
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 through 5.4.4 allows attackers to execute unauthorized code or commands via 'Comments' while saving Config Revisions.
Published: 2017-09-12T02:00:00.000Z
Updated: 2024-10-25T14:12:09.829Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-3133 |
vulnerable | 2026-06-03 14:37:09.577422 |
Details available
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and earlier allows attackers to execute unauthorized code or commands via the Replacement Message HTML for SSL-VPN.
Published: 2017-09-12T02:00:00.000Z
Updated: 2024-10-25T14:12:25.502Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-3132 |
vulnerable | 2026-06-03 14:37:09.575534 |
Details available
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and earlier allows attackers to Execute unauthorized code or commands via the action input during the activation of a FortiToken.
Published: 2017-09-12T02:00:00.000Z
Updated: 2024-10-25T14:12:36.355Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-3131 |
vulnerable | 2026-06-03 14:37:09.574971 |
Details available
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 through 5.4.4 and 5.6.0 allows attackers to execute unauthorized code or commands via the filter input in "Applications" under FortiView.
Published: 2017-09-12T02:00:00.000Z
Updated: 2024-10-25T14:12:49.839Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-3130 |
vulnerable | 2026-06-03 14:37:09.568319 |
Details available
An information disclosure vulnerability in Fortinet FortiOS 5.6.0, 5.4.4 and below versions allows attacker to get FortiOS version info by inspecting FortiOS IKE VendorID packets.
Published: 2017-08-10T21:00:00.000Z
Updated: 2024-10-25T14:33:41.905Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.