CVSS: 5.3EPSS: 0%CPEs: 8EXPL: 0CVE-2024-52962
https://notcve.org/view.php?id=CVE-2024-52962
08 Apr 2025 — An Improper Output Neutralization for Logs vulnerability [CWE-117] in FortiAnalyzer version 7.6.1 and below, version 7.4.5 and below, version 7.2.8 and below, version 7.0.13 and below and FortiManager version 7.6.1 and below, version 7.4.5 and below, version 7.2.8 and below, version 7.0.12 and below may allow an unauthenticated remote attacker to pollute the logs via crafted login requests. An Improper Output Neutralization for Logs vulnerability [CWE-117] in FortiAnalyzer version 7.6.1 and below, version 7... • https://fortiguard.fortinet.com/psirt/FG-IR-24-453 • CWE-117: Improper Output Neutralization for Logs •
CVSS: 2.3EPSS: 0%CPEs: 5EXPL: 0CVE-2024-52966
https://notcve.org/view.php?id=CVE-2024-52966
11 Feb 2025 — An exposure of sensitive information to an unauthorized actor in Fortinet FortiAnalyzer 6.4.0 through 7.6.0 allows attacker to cause information disclosure via filter manipulation. • https://fortiguard.fortinet.com/psirt/FG-IR-24-422 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.6EPSS: 0%CPEs: 4EXPL: 0CVE-2024-50563
https://notcve.org/view.php?id=CVE-2024-50563
16 Jan 2025 — A weak authentication in Fortinet FortiManager Cloud, FortiAnalyzer versions 7.6.0 through 7.6.1, 7.4.1 through 7.4.3, FortiAnalyzer Cloud versions 7.4.1 through 7.4.3, FortiManager versions 7.6.0 through 7.6.1, 7.4.1 through 7.4.3, FortiManager Cloud versions 7.4.1 through 7.4.3 allows attacker to execute unauthorized code or commands via a brute-force attack. Una autenticación débil en Fortinet FortiManager Cloud, FortiAnalyzer versiones 7.6.0 a 7.6.1, 7.4.1 a 7.4.3, FortiAnalyzer Cloud versiones 7.4.1 a ... • https://fortiguard.fortinet.com/psirt/FG-IR-24-221 • CWE-1390: Weak Authentication •