Known Vulnerabilities for Fortiauthenticator by Fortinet
Listed below are 10 of the newest known vulnerabilities associated with "Fortiauthenticator" by "Fortinet".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-26208 json | A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet FortiAuthenticator 6.4.x and ... | 5.3 - MEDIUM | 2023-03-09 | 2023-11-07 |
| CVE-2022-35850 json | An improper neutralization of script-related HTML tags in a web page vulnerability [CWE-80] in FortiAuthenticator versions 6.... | 6.1 - MEDIUM | 2023-04-11 | 2023-11-07 |
| CVE-2022-22302 json | A clear text storage of sensitive information (CWE-312) vulnerability in both FortiGate version 6.4.0 through 6.4.1, 6.2.0 th... | 3.3 - LOW | 2023-07-11 | 2023-11-07 |
| CVE-2021-43068 json | A improper authentication in Fortinet FortiAuthenticator version 6.4.0 allows user to bypass the second factor of authenticat... | 8.1 - HIGH | 2021-12-09 | 2021-12-10 |
| CVE-2021-43067 json | A exposure of sensitive information to an unauthorized actor in Fortinet FortiAuthenticator version 6.4.0, version 6.3.2 and ... | 6.5 - MEDIUM | 2021-12-08 | 2021-12-09 |
| CVE-2021-36177 json | An improper access control vulnerability [CWE-284] in FortiAuthenticator HA service 6.3.2 and below, 6.2.x, 6.1.x, 6.0.x may ... | 4.3 - MEDIUM | 2022-02-02 | 2022-07-12 |
| CVE-2021-26116 json | An improper neutralization of special elements used in an OS command vulnerability in the command line interpreter of FortiAu... | 8.8 - HIGH | 2022-04-06 | 2022-04-13 |
| CVE-2021-24005 json | Usage of hard-coded cryptographic keys to encrypt configuration files and debug logs in FortiAuthenticator versions before 6.... | 7.5 - HIGH | 2021-07-06 | 2021-07-08 |
| CVE-2021-22124 json | An uncontrolled resource consumption (denial of service) vulnerability in the login modules of FortiSandbox 3.2.0 through 3.2... | 7.5 - HIGH | 2021-08-04 | 2021-08-12 |
| CVE-2019-16154 json | An improper neutralization of input during web page generation in FortiAuthenticator WEB UI 6.0.0 may allow an unauthenticate... | 6.1 - MEDIUM | 2020-01-07 | 2020-01-14 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Fortinet | Fortiauthenticator | 6.0.1 | |||
| Application | Fortinet | Fortiauthenticator | 6.0.0 | |||
| Application | Fortinet | Fortiauthenticator | 5.5.0 | |||
| Application | Fortinet | Fortiauthenticator | 5.4.1 | |||
| Application | Fortinet | Fortiauthenticator | 5.4.0 | |||
| Application | Fortinet | Fortiauthenticator | 5.3.1 | |||
| Application | Fortinet | Fortiauthenticator | 5.3.0 | |||
| Application | Fortinet | Fortiauthenticator | 5.2.2 | |||
| Application | Fortinet | Fortiauthenticator | 5.2.1 | |||
| Application | Fortinet | Fortiauthenticator | 5.2.0 | |||
| Application | Fortinet | Fortiauthenticator | 5.1.2 | |||
| Application | Fortinet | Fortiauthenticator | 5.1.1 | |||
| Application | Fortinet | Fortiauthenticator | 5.1.0 | |||
| Application | Fortinet | Fortiauthenticator | 5.0.0 | |||
| Application | Fortinet | Fortiauthenticator | 4.3.4 | |||
| Application | Fortinet | Fortiauthenticator | 4.3.3 | |||
| Application | Fortinet | Fortiauthenticator | 4.3.2 | |||
| Application | Fortinet | Fortiauthenticator | 4.3.1 | |||
| Application | Fortinet | Fortiauthenticator | 4.3.0 | |||
| Application | Fortinet | Fortiauthenticator | 4.2.1 |