Known vulnerabilities in Fortinet, Inc FortiWeb 7.2.0

Vendor: Fortinet, Inc
Website: https://www.fortinet.com/
Total Security Bulletins: 28

Security bulletins (28)

Secuity bulletin Severity Status Published
SB20250812103: OS Command Injection in FortiWeb Low
Patched
12.08.2025
SB2025070847: SQL injection in FortiWeb High
Patched Exploited
08.07.2025
SB2025040913: MitM attack in FortiWeb High
Patched
09.04.2025
SB2025040904: Privilege escalation in FortiWeb Low
Patched
09.04.2025
SB2025040873: Privilege escalation in FortiWeb Low
Patched
08.04.2025
SB2025031329: Web application firewall rules bypass in FortiWeb Medium
Patched
13.03.2025
SB2025031211: Privilege escalation in FortiWeb Low
Patched
12.03.2025
SB2025031203: Authenticated path traversal in FortiWeb Low
Patched
12.03.2025
SB20250211157: Two OS command injection vulnerabilities in FortiWeb Low
Patched
11.02.2025
SB2025012103: Authenticated SQL injection in FortiWeb Low
Patched
21.01.2025
SB2025011656: Multiple path traversal vulnerabilities in FortiWeb Medium
Patched
16.01.2025
SB2025011441: Privilege escalation in FortiWeb Low
Patched
14.01.2025
SB2024111418: Information disclosure in FortiWeb Low
Patched
14.11.2024
SB2024101452: FortiWeb update for OpenSSH regreSSHion attack High
Patched Public exploit
14.10.2024
SB20240709122: MitM attack in FortiWeb Medium
Patched
09.07.2024
SB20240611286: Improper authorization in FortiWeb Medium
Patched
11.06.2024
SB2024051630: Information disclosure in FortiWeb Low
Patched
16.05.2024
SB2023121849: Log injection in FortiWeb Medium
Patched
18.12.2023
SB2023091601: Security restrictions bypass in Fortinet FortiWeb Medium
Patched
16.09.2023
SB2023070504: Denial of service in multiple Fortinet products firmware upgrade function Low
Patched
05.07.2023


Showing elements 1 - 20 out of 28