Known vulnerabilities in Fortinet, Inc FortiWeb 7.2.11

Known vulnerabilities in Fortinet, Inc FortiWeb 7.2.11

Vendor: Fortinet, Inc

Website: https://www.fortinet.com/

Total Security Bulletins: 9

Security bulletins (9)

Secuity bulletin	Severity	Status	Published
SB2025120952: Authentication bypass in FortiWeb	High	Patched	09.12.2025
SB2025120951: Use of Password Hash Instead of Password for Authentication in FortiWeb	Low	Patched	09.12.2025
SB2025111872: OS Command Injection in FortiWeb	High	Patched Exploited	18.11.2025
SB2025111864: Use of hard-coded redis credentials in FortiWeb	Low	Patched	18.11.2025
SB20251114107: Unauthenticated path traversal in FortiWeb	Critical	Patched Exploited	14.11.2025
SB2025101507: Insertion of Sensitive Information Into Sent Data in Fortinet products	Low	Patched	15.10.2025
SB2025090983: Relative path traversal in FortiWeb	Low	Patched	09.09.2025
SB2025040913: MitM attack in FortiWeb	High	Patched	09.04.2025
SB2025040904: Privilege escalation in FortiWeb	Low	Patched	09.04.2025