The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of FortiManager Virtual Appliance

FortiOS/FortiManager VM: privilege escalation via Image File System Integrity
An attacker can bypass restrictions via Image File System Integrity of FortiOS/FortiManager VM, in order to escalate his privileges...
CERTFR-2019-AVI-358, CVE-2019-5587, CVE-2019-6695, FG-IR-19-017, VIGILANCE-VUL-29468
FortiManager: information disclosure via REST API JSON Responses
An attacker can bypass access restrictions to data via REST API JSON Responses of FortiManager, in order to obtain sensitive information...
CERTFR-2019-AVI-185, CVE-2018-1360, FG-IR-18-051, VIGILANCE-VUL-29117
FortiManager: information disclosure via Vdoms Settings
An attacker can bypass access restrictions to data via Vdoms Settings of FortiManager, in order to obtain sensitive information...
CERTFR-2018-AVI-411, CVE-2018-1353, FG-IR-18-016, VIGILANCE-VUL-27097
FortiAnalyzer, FortiManager: Cross Site Scripting via CA And CRL Certificate View Page
An attacker can trigger a Cross Site Scripting via CA And CRL Certificate View Page of FortiAnalyzer/FortiManager, in order to run JavaScript code in the context of the web site...
CERTFR-2018-AVI-326, CVE-2017-17541, FG-IR-17-305, VIGILANCE-VUL-26643
FortiAnalyzer, FortiManager: open redirect via PDF File
An attacker can deceive the user via PDF File of FortiAnalyzer/FortiManager, in order to redirect him to a malicious site...
CERTFR-2018-AVI-303, CVE-2018-1355, FG-IR-18-022, VIGILANCE-VUL-26527
FortiAnalyzer, FortiManager: Cross Site Scripting via Avatar Picture
An attacker can trigger a Cross Site Scripting via Avatar Picture of FortiAnalyzer/FortiManager, in order to run JavaScript code in the context of the web site...
CERTFR-2018-AVI-303, CVE-2018-1354, FG-IR-18-014, VIGILANCE-VUL-26526
FortiManager: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of FortiManager, in order to run JavaScript code in the context of the web site...
CERTFR-2018-AVI-303, CVE-2018-1351, FG-IR-18-006, VIGILANCE-VUL-26525
FortiAnalyzer, FortiManager: open redirect
An attacker can deceive the user of FortiAnalyzer / FortiManager, in order to redirect him to a malicious site...
CVE-2017-3126, FG-IR-17-014, VIGILANCE-VUL-22773
FortiAnalyzer, FortiManager: Cross Site Scripting via Report Filters
An attacker can trigger a Cross Site Scripting via Report Filters of FortiAnalyzer or FortiManager, in order to run JavaScript code in the context of the web site...
CVE-2015-7363, VIGILANCE-VUL-20790
Fortinet FortiManager / FortiAnalyzer: four vulnerabilities
An attacker can use several vulnerabilities of Fortinet FortiManager / FortiAnalyzer...
1624459, 1624561, CVE-2016-3193, CVE-2016-3194, CVE-2016-3195, CVE-2016-3196, VIGILANCE-VUL-19914
Our database contains other pages. You can request a free trial to read them.

Display information about FortiManager Virtual Appliance: