Fortinet Fortiwebmanager vulnerabilities
4 known vulnerabilities affecting fortinet/fortiwebmanager.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH4
Vulnerabilities
Page 1 of 1
CVE-2024-23669HIGHCVSS 8.8≥ 6.2.3, < 6.2.5≥ 7.0.0, < 7.0.5+5 more2024-06-05
CVE-2024-23669 [MEDIUM] CWE-20 CVE-2024-23669: An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6.3.
An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6.3.0 and 6.2.3 through 6.2.4 and 6.0.2 allows attacker to execute unauthorized code or commands via HTTP requests or CLI.
cvelistv5nvd
CVE-2024-23668HIGHCVSS 8.8≥ 6.2.3, < 6.2.5≥ 7.0.0, < 7.0.5+5 more2024-06-03
CVE-2024-23668 [HIGH] CWE-20 CVE-2024-23668: An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6.3.
An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6.3.0 and 6.2.3 through 6.2.4 and 6.0.2 allows attacker to execute unauthorized code or commands via HTTP requests or CLI.
cvelistv5nvd
CVE-2024-23670HIGHCVSS 8.8≥ 6.2.3, < 6.2.5≥ 7.0.0, < 7.0.5+5 more2024-06-03
CVE-2024-23670 [HIGH] CWE-285 CVE-2024-23670: An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6.3.
An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6.3.0 and 6.2.3 through 6.2.4 and 6.0.2 allows attacker to execute unauthorized code or commands via HTTP requests or CLI.
cvelistv5nvd
CVE-2024-23667HIGHCVSS 8.8≥ 6.2.3, < 6.2.5≥ 7.0.0, < 7.0.5+5 more2024-06-03
CVE-2024-23667 [HIGH] CWE-285 CVE-2024-23667: An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6.3.
An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6.3.0 and 6.2.3 through 6.2.4 and 6.0.2 allows attacker to execute unauthorized code or commands via HTTP requests or CLI.
cvelistv5nvd