Firewalls Family for Nessus

IDNameSeverity
238114Fortinet Fortigate Insufficient Session Expiration in SSL-VPN cookie (FG-IR-24-339)
medium
238113Fortinet Fortigate Privilege escalation in automation-stitch (FG-IR-24-385)
medium
238112Fortinet Fortigate eap-cert-auth bypass via revoked certificate (FG-IR-24-544)
medium
238111Fortinet Fortigate SSH key is added even if operation is aborted (FG-IR-23-008)
low
238110Fortinet Fortigate Weak authentication in security fabric daemon (FG-IR-24-058)
medium
238105Fortinet Fortigate Firewall session injection in FGSP (FG-IR-24-287)
low
238104Fortinet Fortigate Information Disclosure on SSLVPN endpoint (FG-IR-24-257)
medium
238102Fortinet Fortigate Privilege escalation in GUI websocket module (FG-IR-25-006)
medium
238101Fortinet FortiWeb Privilege escalation in GUI websocket module (FG-IR-25-006)
medium
237023Zyxel USG FLEX H Series Firewall < 1.30 Privilege Escalation
high
237022Zyxel USG FLEX H Series Firewall < 1.32 Privilege Escalation
medium
237021Zyxel USG FLEX H Series Firewall 1.20 < 1.32 Privilege Escalation
high
236971Fortinet FortiMail 7.0.x < 7.0.9 / 7.2.x < 7.2.8 / 7.4.x < 7.4.5 / 7.6.x < 7.6.3 API Stack-based Buffer Overflow (FG-IR-25-254)
critical
235826Fortinet Fortigate TACACS+ authentication bypass (FG-IR-24-472)
critical
235825Fortinet Fortigate Buffer over-read in FGFM (FG-IR-24-381)
low
235823Fortinet Fortigate DoS in Security Fabric Root (FG-IR-24-388)
medium
234007Fortinet FortiWeb Incorrect user management in widgets dashboard (FG-IR-24-184)
medium
234006Fortinet Fortigate LDAP Clear-text credentials retrievable with IP modification (FG-IR-24-111)
low
234005Fortinet FortiWeb Directory Traversal (FG-IR-24-474)
high
234004Fortinet FortiWeb No certificate name verification for fgfm connection (FG-IR-24-046)
high
234003Fortinet Fortigate No certificate name verification for fgfm connection (FG-IR-24-046)
high
232624Fortinet FortiWeb Web application firewall rules bypass by using an empty filename (FG-IR-23-115)
medium
232603Fortinet FortiWeb Directory Traversal Arbitrary File Write (FG-IR-24-439)
medium
232602Fortinet FortiWeb Multiple format string vulnerabilities (FG-IR-24-325)
high
232601Fortinet Fortigate Multiple format string vulnerabilities (FG-IR-24-325)
high
232300Fortinet FortiWeb RADIUS Protocol CVE-2024-3596 (FG-IR-24-255)
critical
232299Fortinet Fortigate RADIUS Protocol CVE-2024-3596 (FG-IR-24-255)
critical
232200SonicWall SonicOS Privilege Escalation (CVE-2024-53706) (SNWLID-2025-0003)
high
232199SonicWall SonicOS SSRF (CVE-2024-53705) (SNWLID-2025-0003)
high
232198SonicWall SonicOS Multiple Vulnerabilities (SNWLID-2025-0003)
critical
216118Fortinet Fortigate - Format string vulnerability in CLI commands (FG-IR-23-261)
medium
216116Fortinet Fortigate Stack buffer overflow in fabric service (FG-IR-24-160)
high
216115Fortinet Fortigate Permission escalation due to an Improper Privilege Management (FG-IR-24-302)
high
216114Fortinet FortiWeb OS Command Injections (FG-IR-24-438)
high
214096Fortinet Fortigate Exposure of sensitive information in RADIUS Accounting-Request (FG-IR-24-326)
low
214090Fortinet Fortigate IPsec dynamic assignation IP spoofing (FG-IR-23-407)
medium
214089Fortinet Fortigate Out-of-bounds Write in IPSEC Daemon (FG-IR-24-373)
medium
214084Fortinet Fortigate SSLVPN DOS (FG-IR-23-473)
medium
214083Fortinet Fortigate Integer Overflow in ipsec ike (FG-IR-24-267)
medium
214082Fortinet Fortigate Unchecked boundary length causing multiple logic flaws (FG-IR-24-250)
medium
214081Fortinet FortiWeb sqli (FG-IR-24-465)
low
214080Fortinet Fortigate Multipart Form Data DoS (FG-IR-24-219)
high
214079Fortinet Fortigate Path traversal in csfd daemon (FG-IR-24-259)
critical
214078Fortinet FortiWeb Path traversal in csfd daemon (FG-IR-24-259)
critical
214077Fortinet Fortigate Weak Authentication in csfd daemon (FG-IR-24-221)
critical
214076Fortinet Fortigate Out of bounds read in ipsec ike (FG-IR-24-266)
high
214075Fortinet Fortigate File-Filter Bypass in Explicit Web Proxy Policy (FG-IR-24-282)
critical
214074Fortinet Fortigate Null pointer dereference leading to sslvpn DOS (FG-IR-23-293)
medium
214073Fortinet FortiWeb - Stack overflow in execute backup command (FG-IR-23-458)
medium
214072Fortinet Fortigate Authentication bypass in Node.js websocket module and CSF requests (FG-IR-24-535)
critical