Firewalls Family for Nessus

IDNameSeverity
211865Fortinet FortiProxy Out-of-bound Write in sslvpnd (FG-IR-24-255)
medium
210874Fortinet Fortigate - SSLVPN session hijacking using SAML authentication (FG-IR-23-475)
high
210870Fortinet FortiWeb Exposure of password hashes to read-only admin (FG-IR-24-180)
medium
210869Fortinet Fortigate SSLVPN WEB UI Text injection (FG-IR-24-033)
medium
210868Fortinet Fortigate - Improper authentication in fgfmd (FG-IR-24-032)
critical
210586Squid 3.x < 6.10 / 7.0.0 DoS (SQUID-2024:04)
high
209872Fortinet FortiWeb Stack-based buffer overflow in command line interpreter (FG-IR-21-132)
high
209871Fortinet Fortigate ['CSRF'] (FG-IR-20-158)
high
209870Fortinet Fortigate Double free with double usage of json_object_put (FG-IR-23-195)
high
209854Fortinet FortiWeb in OpenSSL library (FG-IR-22-059)
high
209853Fortinet Fortigate using the LDAP test connectivity feature (FG-IR-18-157)
medium
209852Fortinet FortiWeb Heap buffer underflow in administrative interface (FG-IR-23-001)
critical
209851Fortinet Fortigate Access to NULL pointer in SSL VPN portal (FG-IR-22-086)
high
209850Fortinet Fortigate Stack-based buffer overflows in diagnostic CLI commands (FG-IR-21-179)
medium
209849Fortinet Fortigate Slow HTTP DoS Attacks Mitigation (FG-IR-19-013)
high
209848Fortinet Fortigate OpenSSL3 CVE-2022-3602 CVE-2022-3786 vulnerabilities (FG-IR-22-419)
high
209826Fortinet Fortigate CVE-2004-0230 Blind Reset Attack Using the RST/SYN Bit (FG-IR-16-039)
medium
209823Fortinet FortiWeb xss (FG-IR-21-118)
medium
209822Fortinet FortiWeb ] Format string vulnerability found on multiple paths (FG-IR-20-123)
high
209821Fortinet Fortigate Lack of certificate verification when establishing secure connections to external end-points (FG-IR-21-239)
medium
209820Fortinet Fortigate Hardcoded symmetric key in fips.c (FG-IR-19-007)
high
209819Fortinet FortiWeb Buffer overflow in TFTP client library of CLI (FG-IR-21-173)
medium
209818Fortinet Fortigate Buffer overflow in TFTP client library of CLI (FG-IR-21-173)
medium
209817Fortinet FortiWeb - Multiple command injection vulnerabilities (FG-IR-21-157)
high
209816Fortinet Fortigate Heap-based Buffer Overflow in firmware signature verification (FG-IR-21-115)
high
209815Fortinet Fortigate Debug commands allow memory manipulation (FG-IR-21-091)
medium
209808Fortinet FortiWeb OS command injection due to unsafe input validation function (FG-IR-21-166)
high
209807Fortinet FortiWeb xss (FG-IR-20-122)
medium
209806Fortinet FortiWeb ] Buffer overflow vulnerability in the cookie header (FG-IR-20-126)
medium
209805Fortinet Fortigate Security Best Practice: Antivirus evasion via malformed RAR file (FG-IR-20-037)
medium
209804Fortinet Fortigate xss (FG-IR-20-103)
medium
209803Fortinet Fortigate MFA bypass by changing username case (FG-IR-19-283)
critical
209802Fortinet Fortigate xss (FG-IR-21-230)
medium
209801Fortinet FortiWeb Arbitrary file/directory deletion (FG-IR-21-158)
high
209799Fortinet FortiWeb Open redirect in redir handler due to direct input interpolation (FG-IR-21-168)
medium
209798Fortinet FortiWeb xss (FG-IR-21-122)
medium
209797Fortinet FortiWeb Uncontrolled resource consumption (FG-IR-21-039)
high
209760Fortinet FortiWeb ] Restricted user can execute arbitrary commands with root privileges (OS command Injection). (FG-IR-20-120)
high
209759Fortinet Fortigate Missing certificate CN/SAN validation leads to information disclosure (FG-IR-21-074)
medium
209758Fortinet Fortigate Disclosure of other VDOMs information through CLI commands (FG-IR-20-243)
low
209757Fortinet FortiWeb OS Command Injection because of missing input parameter sanitization (FG-IR-21-047)
high
209756Fortinet Fortigate ][Web filtering] Host header is vulnerable to an XSS vulnerability and redirection/injection (FG-IR-19-301)
medium
209755Fortinet Fortigate Buffer Underwrite in firmware verification (FG-IR-21-046)
high
209754Fortinet FortiWeb Buffer Underwrite in firmware verification (FG-IR-21-046)
high
209753Fortinet FortiWeb OpenSSH Terrapin attack (CVE-2023-48795) (FG-IR-23-490)
high
209752Fortinet FortiWeb OS command injection vulnerability (FG-IR-21-116)
high
209751Fortinet FortiWeb [FG-IR-21-014] Path traversal vulnerabilities (FG-IR-21-014)
medium
209750Fortinet Fortigate Multiple Vulnerabilities in Frame Aggregation and Fragmentation Implementations of 802.11 Specification (FragAttacks) (FG-IR-21-071)
low
209749Fortinet Fortigate IPS Engine evasion using custom TCP flags (FG-IR-23-090)
high
209748Fortinet FortiWeb ] Stack-Based Buffer Overflow vulnerability using a crafted request (FG-IR-20-125)
critical