CVE CyberSecurity Database News - Latest cybersecurity news and CVE details

FortiManager

Sep 1, 2023 MITM Fortinet FortiManager

CVE-2022-22305 - Improper Certificate Validation Vulnerability in FortiManager, FortiAnalyzer, FortiOS, and FortiSandbox

Recently, a significant security vulnerability has been identified in several Fortinet products, including FortiManager, FortiAnalyzer, FortiOS, and FortiSandbox. This vulnerability, dubbed as CVE-2022-22305, affects the

CVE-2022-38377 - Improper Access Control Vulnerability in FortiManager and FortiAnalyzer

Nov 25, 2022 API Exploit Fortinet FortiManager

CVE-2022-38377 - Improper Access Control Vulnerability in FortiManager and FortiAnalyzer

A recently discovered improper access control vulnerability (CWE-284) in multiple versions of FortiManager and FortiAnalyzer may allow a remote and authenticated admin user assigned to