Show filters
173 Total Results
Displaying 21-30 of 173
Sort by:
Attacker Value
Unknown
CVE-2024-32115
Disclosure Date: January 14, 2025 (last updated January 15, 2025)
A relative path traversal vulnerability [CWE-23] in Fortinet FortiManager version 7.4.0 through 7.4.2 and before 7.2.5 allows a privileged attacker to delete files from the underlying filesystem via crafted HTTP or HTTPs requests.
0
Attacker Value
Unknown
CVE-2021-32589
Disclosure Date: December 19, 2024 (last updated February 01, 2025)
A Use After Free (CWE-416) vulnerability in FortiManager version 7.0.0, version 6.4.5 and below, version 6.2.7 and below, version 6.0.10 and below, version 5.6.10 and below, version 5.4.7 and below, version 5.2.10 and below, version 5.0.12 and below and FortiAnalyzer version 7.0.0, version 6.4.5 and below, version 6.2.7 and below, version 6.0.10 and below, version 5.6.10 and below, version 5.4.7 and below, version 5.3.11, version 5.2.10 to 5.2.4 fgfmsd daemon may allow a remote, non-authenticated attacker to execute unauthorized code as root via sending a specifically crafted request to the fgfm port of the targeted device.
0
Attacker Value
Unknown
CVE-2024-48889
Disclosure Date: December 18, 2024 (last updated December 19, 2024)
An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78] in FortiManager version 7.6.0, version 7.4.4 and below, version 7.2.7 and below, version 7.0.12 and below, version 6.4.14 and below and FortiManager Cloud version 7.4.4 and below, version 7.2.7 to 7.2.1, version 7.0.12 to 7.0.1 may allow an authenticated remote attacker to execute unauthorized code via FGFM crafted requests.
0
Attacker Value
Unknown
CVE-2023-24467
Disclosure Date: November 22, 2024 (last updated January 05, 2025)
Possible Command Injection
in iManager GET parameter has been discovered in
OpenText™ iManager 3.2.6.0000.
0
Attacker Value
Unknown
CVE-2023-24466
Disclosure Date: November 22, 2024 (last updated January 05, 2025)
Possible XML External Entity Injection
in iManager GET parameter has been discovered in
OpenText™ iManager 3.2.6.0200.
0
Attacker Value
Unknown
CVE-2022-26324
Disclosure Date: November 22, 2024 (last updated January 05, 2025)
Possible XSS in iManager URL for access Component has been discovered in
OpenText™ iManager 3.2.6.0000.
0
Attacker Value
Unknown
CVE-2021-38135
Disclosure Date: November 22, 2024 (last updated January 05, 2025)
Possible
External Service Interaction attack
in iManager has been discovered in
OpenText™ iManager 3.2.6.0000.
0
Attacker Value
Unknown
CVE-2021-38134
Disclosure Date: November 22, 2024 (last updated January 05, 2025)
Possible XSS in iManager URL for access Component has been discovered in
OpenText™ iManager 3.2.5.0000.
0
Attacker Value
Unknown
CVE-2021-38119
Disclosure Date: November 22, 2024 (last updated January 05, 2025)
Possible Reflected Cross-Site Scripting (XSS) Vulnerability
in iManager has been discovered in
OpenText™ iManager 3.2.4.0000.
0
Attacker Value
Unknown
CVE-2021-38118
Disclosure Date: November 22, 2024 (last updated January 05, 2025)
Possible improper input validation Vulnerability
in iManager has been discovered in
OpenText™ iManager 3.2.4.0000.
0
