BACK TO INTEL

Archives

Classification

Clear Filter
Application Security
Cloud Infrastructure
Enterprise Infrastructure
Enterprise IT Infrastructure
Enterprise Networking
Enterprise Security
Enterprise Software
ERP
Information Technology
Infrastructure
Infrastructure Security
Microsoft
Network Appliances
Network Infrastructure
Cisco ASA and FTD
Cisco Security Appliances
Fortinet Ecosystem
Authentication Bypass
Improper Access Control
Fortinet SSL-VPN
Management Plane Security
Network Security
Networking
Open Source
Operating Systems
Software
Software Development
Software Security
Technology
Virtualization
Vulnerability
Web Hosting
Web Security
Windows Ecosystem

FeedFortinet Ecosystem

Verified advisories, vulnerability disclosures, and architectural research.

CVE-2018-13374

Critical Security Advisory: Addressing CVE-2018-13374 Improper Access Control in Fortinet FortiOS and FortiADC

Fortinet FortiOS and FortiADC contain an improper access control vulnerability that allows attackers to obtain the LDAP server login credentials configured in FortiGate by pointing a LDAP server connectivity test request to a rogue LDAP server.

FortiOS and FortiADC
View Detail
CVE-2022-40684

Critical Security Advisory: Resolving CVE-2022-40684 Authentication Bypass in Fortinet Products

Fortinet FortiOS, FortiProxy, and FortiSwitchManager contain an authentication bypass vulnerability that could allow an unauthenticated attacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests.

FortiOS, FortiProxy, FortiSwitchManager
View Detail