cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-23669,https://securityvulnerability.io/vulnerability/CVE-2024-23669,Unauthorized Code Execution Vulnerability in FortiWebManager,"An improper authorization vulnerability exists in Fortinet's FortiWebManager across various versions. This flaw allows an attacker to execute unauthorized code or commands by exploiting HTTP requests or command line interface (CLI) vulnerabilities. The affected versions include 7.2.0, as well as 7.0.0 through 7.0.4, 6.3.0, and from 6.2.3 to 6.2.4, along with 6.0.2. Organizations using these versions of FortiWebManager should take immediate action to mitigate potential risks associated with this vulnerability.",Fortinet,Fortiwebmanager,8.8,HIGH,0.0004799999878741801,false,false,false,false,,false,false,2024-06-05T08:15:00.000Z,0
CVE-2024-23667,https://securityvulnerability.io/vulnerability/CVE-2024-23667,Unauthorized Code Execution Vulnerability in FortiWebManager,"An improper authorization vulnerability in Fortinet FortiWebManager allows an attacker to execute unauthorized code or commands by sending specially crafted HTTP requests or using the command-line interface (CLI). This vulnerability affects multiple versions of the product, making it critical for users to apply defensive measures. The flaw could lead to severe security implications, risking the integrity of the web application environment.",Fortinet,Fortiwebmanager,8.8,HIGH,0.0005000000237487257,false,false,false,false,,false,false,2024-06-03T09:48:30.708Z,0
CVE-2024-23668,https://securityvulnerability.io/vulnerability/CVE-2024-23668,Unauthorized Code Execution Vulnerability in FortiWebManager,"An improper authorization vulnerability exists in Fortinet's FortiWebManager versions 7.2.0, 7.0.0 through 7.0.4, and 6.3.0, as well as versions 6.2.3 through 6.2.4, and 6.0.2, allowing an attacker to execute unauthorized code or commands via crafted HTTP requests or command line interface (CLI) entries. This weakness enables unauthorized access to sensitive functionalities, leading to potential system compromise. It is essential for organizations using the affected versions to implement the recommended security patches promptly to mitigate the risks associated with this vulnerability.",Fortinet,Fortiwebmanager,8.8,HIGH,0.0004799999878741801,false,false,false,false,,false,false,2024-06-03T09:48:24.625Z,0
CVE-2024-23670,https://securityvulnerability.io/vulnerability/CVE-2024-23670,Unauthorized Code Execution Vulnerability in FortiWebManager,"The vulnerability in Fortinet FortiWebManager stems from an improper authorization mechanism that allows attackers to execute unauthorized code or commands. This vulnerability affects multiple versions, including 7.2.0 and earlier versions down to 6.0.2. Attackers can exploit the flaw through crafted HTTP requests or command-line interface (CLI) interactions, potentially compromising the integrity of the affected systems. It is crucial for users of FortiWebManager to apply necessary updates and patches to mitigate the risk associated with this vulnerability.",Fortinet,Fortiwebmanager,8.8,HIGH,0.0005000000237487257,false,false,false,false,,false,false,2024-06-03T09:48:12.424Z,0
CVE-2021-36175,https://securityvulnerability.io/vulnerability/CVE-2021-36175,,"An improper neutralization of input vulnerability [CWE-79] in FortiWebManager versions 6.2.3 and below, 6.0.2 and below may allow a remote authenticated attacker to inject malicious script/tags via the name/description/comments parameter of various sections of the device.",Fortinet,Fortinet Fortiwebmanager,4.1,MEDIUM,0.0006600000197067857,false,false,false,false,,false,false,2021-10-06T09:36:27.000Z,0
CVE-2017-14189,https://securityvulnerability.io/vulnerability/CVE-2017-14189,,An improper access control vulnerability in Fortinet FortiWebManager 5.8.0 allows anyone that can access the admin webUI to successfully log-in regardless the provided password.,Fortinet,Fortiwebmanager,9.8,CRITICAL,0.004290000069886446,false,false,false,false,,false,false,2017-11-29T19:29:00.000Z,0