Known Vulnerabilities for Fortimail by Fortinet
Listed below are 10 of the newest known vulnerabilities associated with "Fortimail" by "Fortinet".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-22299 | A format string vulnerability [CWE-134] in the command line interpreter of FortiADC version 6.0.0 through 6.0.4, FortiADC ver... | 7.8 - HIGH | 2022-08-05 | 2022-08-11 |
| CVE-2021-26100 | A missing cryptographic step in the Identity-Based Encryption service of FortiMail before 7.0.0 may allow an unauthenticated ... | 7.5 - HIGH | 2021-07-09 | 2022-07-12 |
| CVE-2021-26099 | Missing cryptographic steps in the Identity-Based Encryption service of FortiMail before 7.0.0 may allow an attacker who come... | 4.9 - MEDIUM | 2021-07-12 | 2023-08-08 |
| CVE-2021-26095 | The combination of various cryptographic issues in the session management of FortiMail 6.4.0 through 6.4.4 and 6.2.0 through ... | 8.8 - HIGH | 2021-07-20 | 2023-08-08 |
| CVE-2021-26090 | A missing release of memory after its effective lifetime vulnerability in the Webmail of FortiMail 6.4.0 through 6.4.4 and 6.... | 7.5 - HIGH | 2021-07-12 | 2021-07-13 |
| CVE-2021-24020 | A missing cryptographic step in the implementation of the hash digest algorithm in FortiMail 6.4.0 through 6.4.4, and 6.2.0 t... | 9.8 - CRITICAL | 2021-07-09 | 2022-07-12 |
| CVE-2021-24015 | An improper neutralization of special elements used in an OS Command vulnerability in the administrative interface of FortiMa... | 8.8 - HIGH | 2021-07-12 | 2021-07-14 |
| CVE-2021-24013 | Multiple Path traversal vulnerabilities in the Webmail of FortiMail before 6.4.4 may allow a regular user to obtain unauthori... | 6.5 - MEDIUM | 2021-07-12 | 2021-07-13 |
| CVE-2021-24007 | Multiple improper neutralization of special elements of SQL commands vulnerabilities in FortiMail before 6.4.4 may allow a no... | 9.8 - CRITICAL | 2021-07-09 | 2021-07-12 |
| CVE-2021-22129 | Multiple instances of incorrect calculation of buffer size in the Webmail and Administrative interface of FortiMail before 6.... | 8.8 - HIGH | 2021-07-09 | 2021-07-12 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Fortinet | Fortimail | 6.2.4 | All | All | All |
| Application | Fortinet | Fortimail | 6.2.3 | All | All | All |
| Application | Fortinet | Fortimail | 6.2.2 | All | All | All |
| Application | Fortinet | Fortimail | 6.2.1 | All | All | All |
| Application | Fortinet | Fortimail | 6.2.0 | All | All | All |
| Application | Fortinet | Fortimail | 6.0.9 | All | All | All |
| Application | Fortinet | Fortimail | 6.0.8 | All | All | All |
| Application | Fortinet | Fortimail | 6.0.7 | All | All | All |
| Application | Fortinet | Fortimail | 6.0.6 | All | All | All |
| Application | Fortinet | Fortimail | 6.0.5 | All | All | All |
| Application | Fortinet | Fortimail | 6.0.4 | All | All | All |
| Application | Fortinet | Fortimail | 6.0.3 | All | All | All |
| Application | Fortinet | Fortimail | 6.0.2 | All | All | All |
| Application | Fortinet | Fortimail | 6.0.1 | All | All | All |
| Application | Fortinet | Fortimail | 6.0.0 | All | All | All |
| Application | Fortinet | Fortimail | 5.6.3 | All | All | All |
| Application | Fortinet | Fortimail | 5.6.2 | All | All | All |
| Application | Fortinet | Fortimail | 5.6.1 | All | All | All |
| Application | Fortinet | Fortimail | 5.4.9 | All | All | All |
| Application | Fortinet | Fortimail | 5.4.8 | All | All | All |