| 209759 | Fortinet Fortigate Missing certificate CN/SAN validation leads to information disclosure (FG-IR-21-074) | medium |
| 209758 | Fortinet Fortigate Disclosure of other VDOMs information through CLI commands (FG-IR-20-243) | low |
| 209757 | Fortinet FortiWeb OS Command Injection because of missing input parameter sanitization (FG-IR-21-047) | high |
| 209756 | Fortinet Fortigate ][Web filtering] Host header is vulnerable to an XSS vulnerability and redirection/injection (FG-IR-19-301) | medium |
| 209755 | Fortinet Fortigate Buffer Underwrite in firmware verification (FG-IR-21-046) | high |
| 209754 | Fortinet FortiWeb Buffer Underwrite in firmware verification (FG-IR-21-046) | high |
| 209753 | Fortinet FortiWeb OpenSSH Terrapin attack (CVE-2023-48795) (FG-IR-23-490) | high |
| 209752 | Fortinet FortiWeb OS command injection vulnerability (FG-IR-21-116) | high |
| 209751 | Fortinet FortiWeb [FG-IR-21-014] Path traversal vulnerabilities (FG-IR-21-014) | medium |
| 209750 | Fortinet Fortigate Multiple Vulnerabilities in Frame Aggregation and Fragmentation Implementations of 802.11 Specification (FragAttacks) (FG-IR-21-071) | low |
| 209749 | Fortinet Fortigate IPS Engine evasion using custom TCP flags (FG-IR-23-090) | high |
| 209748 | Fortinet FortiWeb ] Stack-Based Buffer Overflow vulnerability using a crafted request (FG-IR-20-125) | critical |
| 209747 | Fortinet Fortigate fails to block malformed HTTP/S traffic when transparent proxy is enabled (FG-IR-20-172) | high |
| 209746 | Fortinet FortiWeb sqli (FG-IR-20-124) | critical |
| 209745 | Fortinet Fortigate ] Sensitive information is displayed in cleartext in the CLI window when using diagnose sys ha checksum command (FG-IR-20-009) | medium |
| 209744 | Fortinet Fortigate Stack-based buffer overflows via crafted CLI commands (FG-IR-21-206) | medium |
| 209742 | Fortinet Fortigate Integer overflow in SSLVPN allocator (FG-IR-21-049) | critical |
| 209741 | Fortinet FortiWeb Stack-based buffer overflow due to type mismatch (FG-IR-21-134) | high |
| 209740 | Fortinet Fortigate Improper Inter-VDOM access control (FG-IR-21-147) | medium |
| 209739 | Fortinet Fortigate Evasion by manipulating MIME attachment (FG-IR-22-074) | high |
| 209738 | Fortinet Fortigate Format string vulnerability in command line interpreter (FG-IR-21-235) | high |
| 209737 | Fortinet Fortigate (FG-IR-21-155) | medium |
| 209736 | Fortinet FortiWeb Confused deputy issue on SERVER_NAME causes open proxy flaw (FG-IR-21-123) | medium |
| 209735 | Fortinet FortiWeb - Path traversal in API controller (FG-IR-21-156) | medium |
| 209734 | Fortinet FortiWeb Multiple cryptographic flaws allow for full LDAP and RADIUS passwords compromise (FG-IR-20-222) | medium |
| 209733 | Fortinet FortiWeb Multiple vulnerabilities in the authentication mechanism of confd (FG-IR-21-130) | critical |
| 209732 | Fortinet Fortigate Privilege escalation vulnerability using the automation script feature (FG-IR-20-131) | high |
| 209731 | Fortinet Fortigate Path traversal vulnerability (FG-IR-21-181) | high |
| 209730 | Fortinet Fortigate Hardcoded SSLVPN cookie encryption key (FG-IR-21-051) | high |
| 209729 | Fortinet FortiWeb Stack-based buffer overflows in API controllers (FG-IR-21-152) | high |
| 209728 | Fortinet FortiWeb Heap-based buffer overflow in API v1.0 controller (FG-IR-21-188) | high |
| 209727 | Fortinet FortiWeb Unauthorized user is granted access to the Reports available in the Log & Report section (FG-IR-21-138) | medium |
| 209726 | Fortinet FortiWeb Incorrect handling of large requests leads to DoS (FG-IR-21-131) | high |
| 209725 | Fortinet FortiWeb Open redirect due to missing domain whitelisting (FG-IR-21-133) | medium |
| 209724 | Fortinet FortiWeb OS command injection (FG-IR-21-120) | high |
| 209723 | Fortinet FortiWeb xss (FG-IR-21-139) | medium |
| 209722 | Fortinet Fortigate Removal of `restore src-vis` command (FG-IR-21-201) | high |
| 209721 | Fortinet FortiWeb Stack-Based Buffer Overflow vulnerability (FG-IR-21-119) | critical |
| 209720 | Fortinet FortiWeb Multiple stack-based buffer overflow vulnerabilities in CLI command (FG-IR-20-206) | high |
| 209719 | Fortinet Fortigate when connecting to SSL-VPN (FG-IR-21-018) | high |
| 209718 | Fortinet FortiWeb Insufficient protections against XSS and CSRF (FG-IR-23-068) | high |
| 209717 | Fortinet FortiWeb API (FG-IR-22-250) | medium |
| 209716 | Fortinet Fortigate TCP Middlebox Reflection (FG-IR-22-073) | high |
| 209715 | Fortinet Fortigate xss (FG-IR-21-057) | medium |
| 209714 | Fortinet Fortigate Information disclosure in web proxy error pages (FG-IR-21-231) | medium |
| 209713 | Fortinet Fortigate Lack of certificate verification when establishing secure connections (FG-IR-18-292) | medium |
| 209712 | Fortinet Fortigate Out-of-bounds Write in captive portal (FG-IR-23-328) | critical |
| 209711 | Fortinet FortiWeb OpenSSH regreSSHion Attack (CVE-2024-6387) (FG-IR-24-258) | critical |
| 209559 | Fortinet FortiManager Missing Authentication (FG-IR-24-423) | critical |
| 207342 | Fortinet FortiManager Authorization Bypass (FG-IR-23-204) | medium |
