Known Vulnerabilities for Fortimanager by Fortinet
Listed below are 10 of the newest known vulnerabilities associated with "Fortimanager" by "Fortinet".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-22305 | An improper certificate validation vulnerability [CWE-295] in FortiManager 7.0.1 and below, 6.4.6 and below; FortiAnalyzer 7... | 4.2 - MEDIUM | 2023-09-01 | 2023-11-07 |
| CVE-2022-22303 | An exposure of sensitive system information to an unauthorized control sphere vulnerability [CWE-497] in FortiManager version... | 5.5 - MEDIUM | 2022-03-02 | 2022-03-10 |
| CVE-2022-22300 | A improper handling of insufficient permissions or privileges in Fortinet FortiAnalyzer version 5.6.0 through 5.6.11, FortiAn... | 8.8 - HIGH | 2022-03-01 | 2023-08-08 |
| CVE-2021-32587 | An improper access control vulnerability in FortiManager and FortiAnalyzer GUI interface 7.0.0, 6.4.5 and below, 6.2.8 and be... | 4.3 - MEDIUM | 2021-08-06 | 2022-06-28 |
| CVE-2021-26107 | An improper access control vulnerability [CWE-284] in FortiManager versions 6.4.4 and 6.4.5 may allow an authenticated attack... | 4.3 - MEDIUM | 2021-11-02 | 2022-06-28 |
| CVE-2021-26104 | Multiple OS command injection (CWE-78) vulnerabilities in the command line interface of FortiManager 6.2.7 and below, 6.4.5 a... | 7.8 - HIGH | 2022-04-06 | 2022-07-28 |
| CVE-2021-24022 | A buffer overflow vulnerability in FortiAnalyzer CLI 6.4.5 and below, 6.2.7 and below, 6.0.x and FortiManager CLI 6.4.5 and b... | 4.4 - MEDIUM | 2021-07-20 | 2021-07-29 |
| CVE-2021-24017 | An improper authentication in Fortinet FortiManager version 6.4.3 and below, 6.2.6 and below allows attacker to assign arbitr... | 4.3 - MEDIUM | 2021-09-30 | 2021-10-08 |
| CVE-2021-24016 | An improper neutralization of formula elements in a csv file in Fortinet FortiManager version 6.4.3 and below, 6.2.7 and belo... | 6.3 - MEDIUM | 2021-09-30 | 2021-10-08 |
| CVE-2021-24006 | An improper access control vulnerability in FortiManager versions 6.4.0 to 6.4.3 may allow an authenticated attacker with a r... | 8.8 - HIGH | 2021-09-06 | 2022-06-28 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Fortinet | Fortimanager | 6.4.5 | All | All | All |
| Application | Fortinet | Fortimanager | 6.4.4 | All | All | All |
| Application | Fortinet | Fortimanager | 6.4.3 | All | All | All |
| Application | Fortinet | Fortimanager | 6.4.2 | All | All | All |
| Application | Fortinet | Fortimanager | 6.4.1 | All | All | All |
| Application | Fortinet | Fortimanager | 6.4.0 | All | All | All |
| Application | Fortinet | Fortimanager | 6.2.6 | All | All | All |
| Application | Fortinet | Fortimanager | 6.2.5 | All | All | All |
| Application | Fortinet | Fortimanager | 6.2.4 | All | All | All |
| Application | Fortinet | Fortimanager | 6.2.3 | All | All | All |
| Application | Fortinet | Fortimanager | 6.2.2 | All | All | All |
| Application | Fortinet | Fortimanager | 6.2.1 | All | All | All |
| Application | Fortinet | Fortimanager | 6.2.1 | All | All | All |
| Application | Fortinet | Fortimanager | 6.2.0 | All | All | All |
| Application | Fortinet | Fortimanager | 6.0.8 | All | All | All |
| Application | Fortinet | Fortimanager | 6.0.7 | All | All | All |
| Application | Fortinet | Fortimanager | 6.0.6 | All | All | All |
| Application | Fortinet | Fortimanager | 6.0.5 | All | All | All |
| Application | Fortinet | Fortimanager | 6.0.4 | All | All | All |
| Application | Fortinet | Fortimanager | 6.0.3 | All | All | All |