Known Vulnerabilities for Fortianalyzer by Fortinet
Listed below are 10 of the newest known vulnerabilities associated with "Fortianalyzer" by "Fortinet".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-22305 | An improper certificate validation vulnerability [CWE-295] in FortiManager 7.0.1 and below, 6.4.6 and below; FortiAnalyzer 7... | 4.2 - MEDIUM | 2023-09-01 | 2023-11-07 |
| CVE-2022-22300 | A improper handling of insufficient permissions or privileges in Fortinet FortiAnalyzer version 5.6.0 through 5.6.11, FortiAn... | 8.8 - HIGH | 2022-03-01 | 2023-08-08 |
| CVE-2021-36170 | An information disclosure vulnerability [CWE-200] in FortiAnalyzerVM and FortiManagerVM versions 7.0.0 and 6.4.6 and below ma... | 3.2 - LOW | 2021-10-06 | 2021-10-14 |
| CVE-2021-32603 | A server-side request forgery (SSRF) (CWE-918) vulnerability in FortiManager and FortiAnalyser GUI 7.0.0, 6.4.5 and below, 6.... | 6.5 - MEDIUM | 2021-08-05 | 2021-08-12 |
| CVE-2021-32598 | An improper neutralization of CRLF sequences in HTTP headers ('HTTP Response Splitting') vulnerability In FortiManager and Fo... | 4.3 - MEDIUM | 2021-08-05 | 2021-08-12 |
| CVE-2021-32597 | Multiple improper neutralization of input during web page generation (CWE-79) in FortiManager and FortiAnalyzer versions 7.0.... | 5.4 - MEDIUM | 2021-08-06 | 2021-08-13 |
| CVE-2021-32587 | An improper access control vulnerability in FortiManager and FortiAnalyzer GUI interface 7.0.0, 6.4.5 and below, 6.2.8 and be... | 4.3 - MEDIUM | 2021-08-06 | 2022-06-28 |
| CVE-2021-26104 | Multiple OS command injection (CWE-78) vulnerabilities in the command line interface of FortiManager 6.2.7 and below, 6.4.5 a... | 7.8 - HIGH | 2022-04-06 | 2022-07-28 |
| CVE-2021-24022 | A buffer overflow vulnerability in FortiAnalyzer CLI 6.4.5 and below, 6.2.7 and below, 6.0.x and FortiManager CLI 6.4.5 and b... | 4.4 - MEDIUM | 2021-07-20 | 2021-07-29 |
| CVE-2021-24021 | An improper neutralization of input vulnerability [CWE-79] in FortiAnalyzer versions 6.4.3 and below, 6.2.7 and below and 6.0... | 5.4 - MEDIUM | 2021-10-06 | 2021-10-14 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Fortinet | Fortianalyzer | 6.4.2 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.4.1 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.4.0 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.2.6 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.2.5 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.2.4 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.2.3 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.2.2 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.2.1 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.2.0 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.0.8 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.0.7 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.0.6 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.0.5 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.0.4 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.0.3 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.0.2 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.0.1 | All | All | All |
| Application | Fortinet | Fortianalyzer | 6.0.0 | All | All | All |
| Application | Fortinet | Fortianalyzer | 5.6.9 | All | All | All |