Fortinet Forticlient Enterprise Management Server vulnerabilities

7 known vulnerabilities affecting fortinet/forticlient_enterprise_management_server.

Total CVEs

7

CISA KEV

1

actively exploited

Public exploits

1

Exploited in wild

1

Severity breakdown

CRITICAL2HIGH3MEDIUM2

Vulnerabilities

Page 1 of 1

CVE-2024-33508HIGHCVSS 7.3≥ 7.0.0, < 7.0.13≥ 7.2.0, < 7.2.52024-09-10

CVE-2024-33508 [HIGH] CWE-77 CVE-2024-33508: An improper neutralization of special elements used in a command ('Command Injection') vulnerability An improper neutralization of special elements used in a command ('Command Injection') vulnerability [CWE-77] in Fortinet FortiClientEMS 7.2.0 through 7.2.4, 7.0.0 through 7.0.12 may allow an unauthenticated attacker to execute limited and temporary operations on the underlying database via crafted requests.

CVE-2023-48788CRITICALCVSS 9.8KEVPoC≥ 7.0.1, < 7.0.11≥ 7.2.0, < 7.2.32024-03-12

CVE-2023-48788 [CRITICAL] CWE-89 CVE-2023-48788: A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet F A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiClientEMS version 7.2.0 through 7.2.2, FortiClientEMS 7.0.1 through 7.0.10 allows attacker to execute unauthorized code or commands via specially crafted packets.

CVE-2023-45581HIGHCVSS 7.2fixed in 7.0.10≥ 7.2.0, ≤ 7.2.22024-02-15

CVE-2023-45581 [HIGH] CWE-269 CVE-2023-45581: An improper privilege management vulnerability [CWE-269] in Fortinet FortiClientEMS version 7.2.0 th An improper privilege management vulnerability [CWE-269] in Fortinet FortiClientEMS version 7.2.0 through 7.2.2 and before 7.0.10 allows an Site administrator with Super Admin privileges to perform global administrative operations affecting other sites via crafted HTTP or HTTPS requests.

CVE-2021-36189MEDIUMCVSS 4.9≥ 6.4.0, ≤ 6.4.4v6.4.6+2 more2021-12-09

CVE-2021-36189 [MEDIUM] CWE-311 CVE-2021-36189: A missing encryption of sensitive data in Fortinet FortiClientEMS version 7.0.1 and below, version 6 A missing encryption of sensitive data in Fortinet FortiClientEMS version 7.0.1 and below, version 6.4.4 and below allows attacker to information disclosure via inspecting browser decrypted data

CVE-2021-41030CRITICALCVSS 9.1≥ 6.2.0, ≤ 6.2.9≥ 6.4.0, ≤ 6.4.4+2 more2021-12-08

CVE-2021-41030 [MEDIUM] CWE-294 CVE-2021-41030: An authentication bypass by capture-replay vulnerability [CWE-294] in FortiClient EMS versions 7.0.1 An authentication bypass by capture-replay vulnerability [CWE-294] in FortiClient EMS versions 7.0.1 and below and 6.4.4 and below may allow an unauthenticated attacker to impersonate an existing user by intercepting and re-using valid SAML authentication messages.

CVE-2021-32592HIGHCVSS 7.8≥ 6.0.0, ≤ 6.0.6≥ 6.2.0, ≤ 6.2.9+2 more2021-12-01

CVE-2021-32592 [HIGH] CWE-427 CVE-2021-32592: An unsafe search path vulnerability in FortiClientWindows 7.0.0, 6.4.6 and below, 6.2.x, 6.0.x and F An unsafe search path vulnerability in FortiClientWindows 7.0.0, 6.4.6 and below, 6.2.x, 6.0.x and FortiClientEMS 7.0.0, 6.4.6 and below, 6.2.x, 6.0.x may allow an attacker to perform a DLL Hijack attack on affected devices via a malicious OpenSSL engine library in the search path.

CVE-2020-15940MEDIUMCVSS 5.4≥ 6.0.0, ≤ 6.0.8≥ 6.2.0, ≤ 6.2.9+1 more2021-11-02

CVE-2020-15940 [MEDIUM] CWE-79 CVE-2020-15940: An improper neutralization of input vulnerability [CWE-79] in FortiClientEMS versions 6.4.1 and belo An improper neutralization of input vulnerability [CWE-79] in FortiClientEMS versions 6.4.1 and below and 6.2.9 and below may allow a remote authenticated attacker to inject malicious script/tags via the name parameter of various sections of the server.