Skip to main content

Fortinet Products Multiple Vulnerabilities

Release Date: 13 Apr 2023 4957 Views

RISK: Medium Risk

TYPE: Operating Systems - Networks OS

TYPE: Networks OS

Multiple vulnerabilities were identified in Fortinet Products. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, sensitive information disclosure, data manipulation and cross-site scripting on the targeted system.


Impact

  • Cross-Site Scripting
  • Information Disclosure
  • Remote Code Execution
  • Data Manipulation

System / Technologies affected

  • FortiAuthenticator 6.1 all versions
  • FortiAuthenticator 6.2 all versions
  • FortiAuthenticator version 6.3.0 through 6.3.3
  • FortiAuthenticator version 6.4.0 through 6.4.6
  • FortiNAC 8.7 all versions
  • FortiNAC 8.8 all versions
  • FortiNAC 9.1 all versions
  • FortiNAC 9.2 all versions
  • FortiNAC version 9.4.0 through 9.4.1
  • FortiOS all versions 6.2, 6.0
  • FortiOS version 6.4.0 through 6.4.12
  • FortiOS version 7.0.0 through 7.0.9
  • FortiOS version 7.2.0 through 7.2.3
  • FortiProxy all versions 2.0, 1.2, 1.1, 1.0
  • FortiProxy version 7.0.0 through 7.0.8
  • FortiProxy version 7.2.0 through 7.2.2
  • FortiWeb 6.4 all versions
  • FortiWeb version 6.0 all versions
  • FortiWeb version 6.1 all versions
  • FortiWeb version 6.2 all versions
  • FortiWeb version 6.3.0 through 6.3.21
  • FortiWeb version 7.0.0 through 7.0.3

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:


Vulnerability Identifier


Source


Related Link