Fortinet FortiManager

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in Fortinet FortiManager.

Known Exploited Fortinet FortiManager Vulnerabilities

The following Fortinet FortiManager vulnerabilities have been marked by CISA as Known to be Exploited by threat actors.

Title	Description	Added
Fortinet FortiManager Missing Authentication Vulnerability	Fortinet FortiManager contains a missing authentication vulnerability in the fgfmd daemon that allows a remote, unauthenticated attacker to execute arbitrary code or commands via specially crafted requests. CVE-2024-47575 Exploit Probability: 93.8%	October 23, 2024

The vulnerability CVE-2024-47575: Fortinet FortiManager Missing Authentication Vulnerability is in the top 1% of the currently known exploitable vulnerabilities.

By the Year

In 2026 there have been 7 vulnerabilities in Fortinet FortiManager with an average score of 6.5 out of ten. Last year, in 2025 FortiManager had 33 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in FortiManager in 2026 could surpass last years number. Last year, the average CVE base score was greater by 0.65

Year	Vulnerabilities	Average Score
2026	7	6.54
2025	33	7.19
2024	20	6.92
2023	17	6.46
2022	8	6.18
2021	12	5.16
2020	4	0.00
2019	3	8.00
2018	5	5.43

It may take a day or so for new FortiManager vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Fortinet FortiManager Security Vulnerabilities

FortiAnalyzer/Manager 7.x/Cloud auth bypass via race condition (CVE-2026-22629)
CVE-2026-22629 3.4 - Low - March 10, 2026

An improper restriction of excessive authentication attempts vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.4, FortiAnalyzer 7.4 all versions, FortiAnalyzer 7.2 all versions, FortiAnalyzer 7.0 all versions, FortiAnalyzer 6.4 all versions, FortiAnalyzer Cloud 7.6.0 through 7.6.4, FortiAnalyzer Cloud 7.4 all versions, FortiAnalyzer Cloud 7.2 all versions, FortiAnalyzer Cloud 7.0 all versions, FortiAnalyzer Cloud 6.4 all versions, FortiManager 7.6.0 through 7.6.4, FortiManager 7.4 all versions, FortiManager 7.2 all versions, FortiManager 7.0 all versions, FortiManager 6.4 all versions, FortiManager Cloud 7.6.0 through 7.6.4, FortiManager Cloud 7.4 all versions, FortiManager Cloud 7.2 all versions, FortiManager Cloud 7.0 all versions, FortiManager Cloud 6.4 all versions may allow an attacker to bypass bruteforce protections via exploitation of race conditions. The latter raises the complexity of practical exploitation.

Improper Restriction of Excessive Authentication Attempts

FortiAnalyzer/Manager Cert Validation Flaw 7.x & 6.x MitM
CVE-2025-68482 6.3 - Medium - March 10, 2026

A improper certificate validation vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.4, FortiAnalyzer 7.4.0 through 7.4.8, FortiAnalyzer 7.2 all versions, FortiAnalyzer 7.0 all versions, FortiAnalyzer 6.4 all versions, FortiManager 7.6.0 through 7.6.4, FortiManager 7.4.0 through 7.4.8, FortiManager 7.2 all versions, FortiManager 7.0 all versions, FortiManager 6.4 all versions may allow a remote unauthenticated attacker to view confidential information via a man in the middle [MiTM] attack.

Improper Certificate Validation

Fortinet FortiAnalyzer/Manager 7.x6.4 Priv Esc via Hidden CLI Cmd
CVE-2025-48418 6.4 - Medium - March 10, 2026

A hidden functionality vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.3, FortiAnalyzer 7.4.0 through 7.4.7, FortiAnalyzer 7.2.0 through 7.2.10, FortiAnalyzer 7.0.0 through 7.0.14, FortiAnalyzer 6.4 all versions, FortiAnalyzer Cloud 7.6.2, FortiAnalyzer Cloud 7.4.1 through 7.4.7, FortiAnalyzer Cloud 7.2.1 through 7.2.10, FortiAnalyzer Cloud 7.0.1 through 7.0.14, FortiAnalyzer Cloud 6.4 all versions, FortiManager 7.6.0 through 7.6.3, FortiManager 7.4.0 through 7.4.7, FortiManager 7.2.0 through 7.2.10, FortiManager 7.0.0 through 7.0.14, FortiManager 6.4 all versions, FortiManager Cloud 7.6.2 through 7.6.3, FortiManager Cloud 7.4.1 through 7.4.7, FortiManager Cloud 7.2.1 through 7.2.10, FortiManager Cloud 7.0.1 through 7.0.14, FortiManager Cloud 6.4 all versions may allow a remote authenticated read-only admin with CLI access to escalate their privilege via use of a hidden command.

Hidden Functionality

FortiAnalyzer & FortiManager Auth bypass via crafted requests, v7.2-7.6
CVE-2026-22572 6.8 - Medium - March 10, 2026

An authentication bypass using an alternate path or channel vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.3, FortiAnalyzer 7.4.0 through 7.4.7, FortiAnalyzer 7.2.2 through 7.2.11, FortiManager 7.6.0 through 7.6.3, FortiManager 7.4.0 through 7.4.7, FortiManager 7.2.2 through 7.2.11 may allow an attacker with knowledge of the admins password to bypass multifactor authentication checks via submitting multiple crafted requests.

Authentication Bypass Using an Alternate Path or Channel

Format String Privilege Escalation in FortiAnalyzer/Manager 7.0-7.6.4
CVE-2025-68648 6.5 - Medium - March 10, 2026

A use of externally-controlled format string vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.4, FortiAnalyzer 7.4.0 through 7.4.7, FortiAnalyzer 7.2 all versions, FortiAnalyzer 7.0 all versions, FortiAnalyzer Cloud 7.6.0 through 7.6.4, FortiAnalyzer Cloud 7.4.0 through 7.4.7, FortiAnalyzer Cloud 7.2 all versions, FortiAnalyzer Cloud 7.0 all versions, FortiManager 7.6.0 through 7.6.4, FortiManager 7.4.0 through 7.4.7, FortiManager 7.2 all versions, FortiManager 7.0 all versions, FortiManager Cloud 7.6.0 through 7.6.4, FortiManager Cloud 7.4.0 through 7.4.7, FortiManager Cloud 7.2 all versions, FortiManager Cloud 7.0 all versions may allow an attacker to escalate its privileges via specially crafted requests.

Use of Externally-Controlled Format String

FortiManager 7.4.07.4.2 Stack Buffer Overflow CVE202554820
CVE-2025-54820 7 - High - March 10, 2026

A Stack-based Buffer Overflow vulnerability [CWE-121] vulnerability in Fortinet FortiManager 7.4.0 through 7.4.2, FortiManager 7.2.0 through 7.2.10, FortiManager 6.4 all versions may allow a remote unauthenticated attacker to execute unauthorized commands via crafted requests, if the service is enabled. The success of the attack depends on the ability to bypass the stack protection mechanisms.

Stack Overflow

Fortinet FortiOS Auth Bypass 7.07.6 via Alt Channel
CVE-2026-24858 9.4 - Critical - January 27, 2026

An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.5, FortiAnalyzer 7.4.0 through 7.4.9, FortiAnalyzer 7.2.0 through 7.2.11, FortiAnalyzer 7.0.0 through 7.0.15, FortiManager 7.6.0 through 7.6.5, FortiManager 7.4.0 through 7.4.9, FortiManager 7.2.0 through 7.2.11, FortiManager 7.0.0 through 7.0.15, FortiOS 7.6.0 through 7.6.5, FortiOS 7.4.0 through 7.4.10, FortiOS 7.2.0 through 7.2.12, FortiOS 7.0.0 through 7.0.18, FortiProxy 7.6.0 through 7.6.4, FortiProxy 7.4.0 through 7.4.12, FortiProxy 7.2.0 through 7.2.15, FortiProxy 7.0.0 through 7.0.22, FortiWeb 8.0.0 through 8.0.3, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4.0 through 7.4.11 may allow an attacker with a FortiCloud account and a registered device to log into other devices registered to other accounts, if FortiCloud SSO authentication is enabled on those devices.

Authentication Bypass Using an Alternate Path or Channel

Fortinet FortiAnalyzer PKI Leak (CVE-2024-40593) Fixed 7.4.3
CVE-2024-40593 5.9 - Medium - December 11, 2025

A key management errors vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.2, FortiAnalyzer 7.2.0 through 7.2.5, FortiAnalyzer 7.0 all versions, FortiAnalyzer 6.4 all versions, FortiManager 7.4.0 through 7.4.2, FortiManager 7.2.0 through 7.2.5, FortiManager 7.0 all versions, FortiManager 6.4 all versions, FortiOS 7.6.0, FortiOS 7.4.4, FortiOS 7.2.7, FortiOS 7.0.14, FortiPortal 6.0 all versions may allow an authenticated admin to retrieve a certificate's private key via the device's admin shell.

Key Management Errors

Fortinet Forti* - Sensitive Data Disclosure via Crafted Packets (v<=7.6)
CVE-2024-47569 4.2 - Medium - October 14, 2025

A insertion of sensitive information into sent data vulnerability in Fortinet FortiMail 7.4.0 through 7.4.2, FortiMail 7.2.0 through 7.2.6, FortiMail 7.0 all versions, FortiManager 7.6.0 through 7.6.1, FortiManager 7.4.1 through 7.4.3, FortiManager Cloud 7.4.1 through 7.4.3, FortiNDR 7.6.0 through 7.6.1, FortiNDR 7.4.0 through 7.4.8, FortiNDR 7.2 all versions, FortiNDR 7.1 all versions, FortiNDR 7.0 all versions, FortiNDR 1.5 all versions, FortiOS 7.6.0, FortiOS 7.4.0 through 7.4.4, FortiOS 7.2.0 through 7.2.8, FortiOS 7.0.0 through 7.0.15, FortiOS 6.4.0 through 6.4.15, FortiOS 6.2 all versions, FortiOS 6.0 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.4.0 through 7.4.4, FortiProxy 7.2.0 through 7.2.10, FortiProxy 7.0 all versions, FortiProxy 2.0 all versions, FortiProxy 1.2 all versions, FortiProxy 1.1 all versions, FortiProxy 1.0 all versions, FortiRecorder 7.2.0 through 7.2.1, FortiRecorder 7.0.0 through 7.0.4, FortiTester 7.4.0 through 7.4.2, FortiTester 7.3 all versions, FortiTester 7.2 all versions, FortiTester 7.1 all versions, FortiTester 7.0 all versions, FortiTester 4.2 all versions, FortiVoice 7.0.0 through 7.0.4, FortiVoice 6.4.0 through 6.4.9, FortiVoice 6.0.7 through 6.0.12, FortiWeb 7.6.0, FortiWeb 7.4.0 through 7.4.4, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions, FortiWeb 6.4 all versions allows attacker to disclose sensitive information via specially crafted packets.

Insertion of Sensitive Information Into Sent Data

FortiOS 6.07.6 Heap Overflow via Crafted Requests
CVE-2024-50571 6.5 - Medium - October 14, 2025

A heap-based buffer overflow vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.2, FortiAnalyzer 7.4.0 through 7.4.5, FortiAnalyzer 7.2.0 through 7.2.9, FortiAnalyzer 7.0.0 through 7.0.13, FortiAnalyzer 6.4 all versions, FortiAnalyzer 6.2 all versions, FortiAnalyzer 6.0 all versions, FortiAnalyzer Cloud 7.4.1 through 7.4.5, FortiAnalyzer Cloud 7.2.1 through 7.2.9, FortiAnalyzer Cloud 7.0.1 through 7.0.13, FortiAnalyzer Cloud 6.4 all versions, FortiManager 7.6.0 through 7.6.1, FortiManager 7.4.0 through 7.4.5, FortiManager 7.2.0 through 7.2.9, FortiManager 7.0.0 through 7.0.13, FortiManager 6.4 all versions, FortiManager 6.2 all versions, FortiManager 6.0 all versions, FortiManager Cloud 7.6.2, FortiManager Cloud 7.4.1 through 7.4.5, FortiManager Cloud 7.2.1 through 7.2.9, FortiManager Cloud 7.0.1 through 7.0.13, FortiManager Cloud 6.4 all versions, FortiOS 7.6.0 through 7.6.2, FortiOS 7.4.0 through 7.4.6, FortiOS 7.2.0 through 7.2.10, FortiOS 7.0.0 through 7.0.16, FortiOS 6.4.0 through 6.4.15, FortiOS 6.2 all versions, FortiProxy 7.6.0 through 7.6.1, FortiProxy 7.4.0 through 7.4.7, FortiProxy 7.2.0 through 7.2.12, FortiProxy 7.0.0 through 7.0.19, FortiProxy 2.0 all versions, FortiProxy 1.2 all versions, FortiProxy 1.1 all versions, FortiProxy 1.0 all versions allows attacker to execute unauthorized code or commands via specifically crafted requests.

Heap-based Buffer Overflow

Path Traversal in FortiManager FGFM (v7.6.0-7.6.1+)
CVE-2024-52964 6.5 - Medium - August 12, 2025

An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability [CWE-22] in Fortinet FortiManager version 7.6.0 through 7.6.1, 7.4.0 through 7.4.5, 7.2.0 through 7.2.9 and below 7.0.13 & FortiManager Cloud version 7.6.0 through 7.6.1, 7.4.0 through 7.4.5 and before 7.2.9 allows an authenticated remote attacker to overwrite arbitrary files via FGFM crafted requests.

Directory traversal

FortiManager/Analyzer SQL Injection before 7.6.2 (CWE-89)
CVE-2025-24474 - July 08, 2025

An Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability [CWE-89] in FortiManager 7.6.0 through 7.6.1, 7.4.0 through 7.4.6, 7.2 all versions, 7.0 all versions, 6.4 all versions; FortiManager Cloud 7.4.1 through 7.4.6, 7.2 all versions, 7.0 all versions, 6.4 all versions; FortiAnalyzer 7.6.0 through 7.6.1, 7.4.0 through 7.4.6, 7.2 all versions, 7.0 all versions, 6.4 all versions; and FortiAnalyzer Cloud 7.4.1 through 7.4.6, 7.2 all versions, 7.0 all versions, 6.4 all versions may allow an authenticated attacker with high privilege to extract database information via crafted requests.

SQL Injection

FortiManager 7.2.0-7.2.1/7.0.0-7.0.7: Auth Miss. Overwrites Global Threat Feeds
CVE-2024-54020 4.3 - Medium - May 28, 2025

A missing authorization in Fortinet FortiManager versions 7.2.0 through 7.2.1, and versions 7.0.0 through 7.0.7 may allow an authenticated attacker to overwrite global threat feeds via crafted update requests.

AuthZ

FortiAnalyzer/Manager Log Injection via CWE-117 (Log Neutralization Failure)
CVE-2024-52962 - April 08, 2025

An Improper Output Neutralization for Logs vulnerability [CWE-117] in FortiAnalyzer version 7.6.1 and below, version 7.4.5 and below, version 7.2.8 and below, version 7.0.13 and below and FortiManager version 7.6.1 and below, version 7.4.5 and below, version 7.2.8 and below, version 7.0.12 and below may allow an unauthenticated remote attacker to pollute the logs via crafted login requests.

Improper Output Neutralization for Logs

FortiOS/Proxy/Manager CVE-2024-26013: Improper Channel Restriction (CWE-923)
CVE-2024-26013 7.1 - High - April 08, 2025

A improper restriction of communication channel to intended endpoints vulnerability [CWE-923] in Fortinet FortiOS version 7.4.0 through 7.4.4, 7.2.0 through 7.2.8, 7.0.0 through 7.0.15, 6.4.0 through 6.4.15 and before 6.2.16, Fortinet FortiProxy version 7.4.0 through 7.4.2, 7.2.0 through 7.2.9 and before 7.0.15, Fortinet FortiManager version 7.4.0 through 7.4.2, 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.14 and before 6.2.13, Fortinet FortiAnalyzer version 7.4.0 through 7.4.2, 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.14 and before 6.2.13, Fortinet FortiVoice version 7.0.0 through 7.0.2 before 6.4.8 and Fortinet FortiWeb before 7.4.2 may allow an unauthenticated attacker in a man-in-the-middle position to impersonate the management device (FortiCloud server or/and in certain conditions, FortiManager), via intercepting the FGFM authentication request between the management device and the managed device

Improper Restriction of Communication Channel to Intended Endpoints

Fortinet FortiOS <=7.4.3 Vulnerable to MIM Impersonation (CVE-2024-50565)
CVE-2024-50565 7.5 - High - April 08, 2025

A improper restriction of communication channel to intended endpoints vulnerability [CWE-923] in Fortinet FortiOS version 7.4.0 through 7.4.3, 7.2.0 through 7.2.7, 7.0.0 through 7.0.14, 6.4.0 through 6.4.15 and 6.2.0 through 6.2.16, Fortinet FortiProxy version 7.4.0 through 7.4.2, 7.2.0 through 7.2.9, 7.0.0 through 7.0.15 and 2.0.0 through 2.0.14, Fortinet FortiManager version 7.4.0 through 7.4.2, 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.14 and 6.2.0 through 6.2.13, Fortinet FortiAnalyzer version 7.4.0 through 7.4.2, 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.14 and 6.2.0 through 6.2.13, Fortinet FortiVoice version 7.0.0 through 7.0.2, 6.4.0 through 6.4.8 and 6.0.0 through 6.0.12 and Fortinet FortiWeb version 7.4.0 through 7.4.2, 7.2.0 through 7.2.10, 7.0.0 through 7.0.10 allows an unauthenticated attacker in a man-in-the-middle position to impersonate the management device (FortiCloud server or/and in certain conditions, FortiManager), via intercepting the FGFM authentication request between the management device and the managed device

Man-in-the-Middle / MITM

FortiOS/FortiProxy 7.x Admin Interface Buffer Underwrite (CVE-2023-25610)
CVE-2023-25610 - March 24, 2025

A buffer underwrite ('buffer underflow') vulnerability in the administrative interface of Fortinet FortiOS version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.6, version 6.4.0 through 6.4.11 and version 6.2.12 and below, FortiProxy version 7.2.0 through 7.2.2, version 7.0.0 through 7.0.8, version 2.0.12 and below and FortiOS-6K7K version 7.0.5, version 6.4.0 through 6.4.10 and version 6.2.0 through 6.2.10 and below allows a remote unauthenticated attacker to execute arbitrary code or commands via specifically crafted requests.

buffer underrun

FortiManager/Analyzer 7.4.0 evtlog Leak of Private Keys (CWE-532)
CVE-2024-40585 - March 14, 2025

An insertion of sensitive information into log file vulnerabilities [CWE-532] in FortiManager version 7.4.0, version 7.2.3 and below, version 7.0.8 and below, version 6.4.12 and below, version 6.2.11 and below and FortiAnalyzer version 7.4.0, version 7.2.3 and below, version 7.0.8 and below, version 6.4.12 and below, version 6.2.11 and below eventlog may allow any low privileged user with access to event log section to retrieve certificate private key and encrypted password logged as system log.

Insertion of Sensitive Information into Log File

FortiManager 7.4.1-7.4.3 Priv Escalation via Cmd Injection in Crafted Packets
CVE-2024-46662 - March 14, 2025

A improper neutralization of special elements used in a command ('command injection') in Fortinet FortiManager versions 7.4.1 through 7.4.3, FortiManager Cloud versions 7.4.1 through 7.4.3 allows attacker to escalation of privilege via specifically crafted packets

Command Injection

FortiAnalyzer/FortiManager CLI SQLi v7.4.0-7.4.2
CVE-2024-33501 6.7 - Medium - March 11, 2025

Two improper neutralization of special elements used in an SQL Command ('SQL Injection') vulnerability [CWE-89] in Fortinet FortiAnalyzer version 7.4.0 through 7.4.2 and before 7.2.5, FortiManager version 7.4.0 through 7.4.2 and before 7.2.5 and FortiAnalyzer-BigData version 7.4.0 and before 7.2.7 allows a privileged attacker to execute unauthorized code or commands via specifically crafted CLI requests.

SQL Injection

FortiManager/Analyzer OS Command Injection 5.0–7.4 CVE-2024-32123
CVE-2024-32123 - March 11, 2025

Multiple improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiManager, FortiAnalyzer versions 7.4.0 through 7.4.2 7.2.0 through 7.2.5 and 7.0.0 through 7.0.12 and 6.4.0 through 6.4.14 and 6.2.0 through 6.2.12 and 6.0.0 through 6.0.12 and 5.6.0 through 5.6.11 and 5.4.0 through 5.4.7 and 5.2.0 through 5.2.10 and 5.0.0 through 5.0.12 and 4.3.4 through 4.3.8 allows attacker to execute unauthorized code or commands via crafted CLI requests.

Shell injection

FortiManager hard-coded key crypto flaw (CWE-321) 7.07.6.1 API decryption
CVE-2024-33504 7.7 - High - February 11, 2025

A use of hard-coded cryptographic key to encrypt sensitive data vulnerability [CWE-321] in FortiManager 7.6.0 through 7.6.1, 7.4.0 through 7.4.5, 7.2.0 through 7.2.9, 7.0 all versions, 6.4 all versions may allow an attacker with JSON API access permissions to decrypt some secrets even if the 'private-data-encryption' setting is enabled.

Use of Hard-coded Cryptographic Key

FortiManager/Analyzer: Path Traversal via CLI, admin file deletion 7.4.2
CVE-2024-36508 - February 11, 2025

An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-22] in Fortinet FortiManager version 7.4.0 through 7.4.2 and before 7.2.5 and Fortinet FortiAnalyzer version 7.4.0 through 7.4.2 and before 7.2.5 CLI allows an authenticated admin user with diagnose privileges to delete files on the system.

Directory traversal

FortiAnalyzer/Manager OS Cmd Inject (CWE-78) v<7.4.3,7.2.5,7.0.13,6.4.15,6.2.13
CVE-2024-40584 - February 11, 2025

An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in Fortinet FortiAnalyzer version 7.4.0 through 7.4.3, 7.2.0 through 7.2.5, 7.0.0 through 7.0.13, 6.4.0 through 6.4.15 and 6.2.2 through 6.2.13, Fortinet FortiManager version 7.4.0 through 7.4.3, 7.2.0 through 7.2.5, 7.0.0 through 7.0.13, 6.4.0 through 6.4.15 and 6.2.2 through 6.2.13, Fortinet FortiAnalyzer BigData version 7.4.0, 7.2.0 through 7.2.7, 7.0.1 through 7.0.6, 6.4.5 through 6.4.7 and 6.2.5, Fortinet FortiAnalyzer Cloud version 7.4.1 through 7.4.3, 7.2.1 through 7.2.5, 7.0.1 through 7.0.13 and 6.4.1 through 6.4.7 and Fortinet FortiManager Cloud version 7.4.1 through 7.4.3, 7.2.1 through 7.2.5, 7.0.1 through 7.0.13 and 6.4.1 through 6.4.7 GUI allows an authenticated privileged attacker to execute unauthorized code or commands via crafted HTTPS or HTTP requests.

Shell injection

Fortinet FortiManager/<others> <=7.4.3 Cache Poison via External Host Header
CVE-2022-23439 4.1 - Medium - January 22, 2025

A externally controlled reference to a resource in another sphere vulnerability in Fortinet allows attacker to poison web caches via crafted HTTP requests, where the `Host` header points to an arbitrary webserver

Externally Controlled Reference to a Resource in Another Sphere

Weak Auth in FortiManager/FortiAnalyzer 7.4.x7.6.x Allows Unauth Code Exec
CVE-2024-50563 9.8 - Critical - January 16, 2025

A weak authentication in Fortinet FortiManager Cloud, FortiAnalyzer versions 7.6.0 through 7.6.1, 7.4.1 through 7.4.3, FortiAnalyzer Cloud versions 7.4.1 through 7.4.3, FortiManager versions 7.6.0 through 7.6.1, 7.4.1 through 7.4.3, FortiManager Cloud versions 7.4.1 through 7.4.3 allows attacker to execute unauthorized code or commands via a brute-force attack.

1390

FortiAnalyzer/FortiManager Priv Escalation v7.4.0-7.2.5, 6.4.0-6.4.15
CVE-2024-45331 7.8 - High - January 16, 2025

A incorrect privilege assignment in Fortinet FortiAnalyzer versions 7.4.0 through 7.4.3, 7.2.0 through 7.2.5, 7.0.0 through 7.0.13, 6.4.0 through 6.4.15, FortiManager versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.5, 7.0.0 through 7.0.13, 6.4.0 through 6.4.15, FortiAnalyzer Cloud versions 7.4.1 through 7.4.2, 7.2.1 through 7.2.6, 7.0.1 through 7.0.13, 6.4.1 through 6.4.7 allows attacker to escalate privilege via specific shell commands

Incorrect Privilege Assignment

Fortinet FortiRecorder PathTraversal (v7.2.0-7.2.1, v7.0.0-7.0.4)
CVE-2024-48885 5.2 - Medium - January 16, 2025

A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet FortiRecorder 7.2.0 through 7.2.1, FortiRecorder 7.0.0 through 7.0.4, FortiVoice 7.0.0 through 7.0.4, FortiVoice 6.4.0 through 6.4.9, FortiVoice 6.0 all versions, FortiWeb 7.6.0, FortiWeb 7.4.0 through 7.4.4, FortiWeb 7.2 all versions, FortiWeb 7.0 all versions, FortiWeb 6.4 all versions allows attacker to escalate privilege via specially crafted packets.

Directory traversal

Fortinet FortiOS <=7.4.4 Weak Auth BruteForce Code Exec
CVE-2024-48886 9.8 - Critical - January 14, 2025

A weak authentication in Fortinet FortiOS versions 7.4.0 through 7.4.4, 7.2.0 through 7.2.8, 7.0.0 through 7.0.15, 6.4.0 through 6.4.15, FortiProxy versions 7.4.0 through 7.4.4, 7.2.0 through 7.2.10, 7.0.0 through 7.0.17, 2.0.0 through 2.0.14, FortiManager versions 7.6.0 through 7.6.1, 7.4.1 through 7.4.3, FortiManager Cloud versions 7.4.1 through 7.4.3, FortiAnalyzer Cloud versions 7.4.1 through 7.4.3 allows attacker to execute unauthorized code or commands via a brute-force attack.

1390

FortiManager OS CMD INJ CVE-2024-50566 (v7.2.87.6.1)
CVE-2024-50566 7.2 - High - January 14, 2025

A improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiManager Cloud 7.6.0 through 7.6.1, FortiManager Cloud 7.4.0 through 7.4.4, FortiManager Cloud 7.2.2 through 7.2.7, FortiManager 7.6.0 through 7.6.1, FortiManager 7.4.0 through 7.4.5, FortiManager 7.2.1 through 7.2.8 may allow an authenticated remote attacker to execute unauthorized code via FGFM crafted requests.

Shell injection

Path Trv Remote Auth Write in FortiManager 7.6.0-7.6.1, 7.4.1-7.4.3 (Fortinet)
CVE-2024-48884 7.1 - High - January 14, 2025

A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet FortiManager 7.6.0 through 7.6.1, FortiManager 7.4.1 through 7.4.3, FortiManager Cloud 7.4.1 through 7.4.3, FortiOS 7.6.0, FortiOS 7.4.0 through 7.4.4, FortiOS 7.2.0 through 7.2.9, FortiOS 7.0.0 through 7.0.15, FortiOS 6.4.0 through 6.4.15, FortiProxy 7.4.0 through 7.4.5, FortiProxy 7.2.0 through 7.2.11, FortiProxy 7.0.0 through 7.0.18, FortiProxy 2.0 all versions, FortiProxy 1.2 all versions, FortiProxy 1.1 all versions, FortiProxy 1.0 all versions may allow a remote authenticated attacker with access to the security fabric interface and port to write arbitrary files or a remote unauthenticated attacker to delete an arbitrary folder

Directory traversal

FortiManager 6.4.12-7.4.0 Improper Access via Expired Resource Operation
CVE-2024-47571 9.8 - Critical - January 14, 2025

An operation on a resource after expiration or release in Fortinet FortiManager 6.4.12 through 7.4.0 allows an attacker to gain improper access to FortiGate via valid credentials.

Operation on a Resource after Expiration or Release

FortiManager Path Traversal Enables Remote Code Exec v7.4.3 and Earlier
CVE-2024-36512 7.2 - High - January 14, 2025

An improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiManager, FortiAnalyzer 7.4.0 through 7.4.3 and 7.2.0 through 7.2.5 and 7.0.2 through 7.0.12 and 6.2.10 through 6.2.13 allows attacker to execute unauthorized code or commands via crafted HTTP or HTTPS requests.

Directory traversal

OOB Write in Fortinet FortiManager s/7.4.0-7.4.2 & FortiAnalyzer 7.4.0-7.4.2
CVE-2024-35273 8.8 - High - January 14, 2025

A out-of-bounds write in Fortinet FortiManager version 7.4.0 through 7.4.2, FortiAnalyzer version 7.4.0 through 7.4.2 allows attacker to escalation of privilege via specially crafted http requests.

Memory Corruption

Privilege Escalation in Fortinet FortiManager & FortiAnalyzer (v6.4.0-7.4.3)
CVE-2024-33503 7.8 - High - January 14, 2025

A improper privilege management in Fortinet FortiManager version 7.4.0 through 7.4.3, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14, FortiAnalyzer version 7.4.0 through 7.4.2, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14 allows attacker to escalation of privilege via specific shell commands

Incorrect Privilege Assignment

FortiManager 7.4.x Path Traversal Enables Remote Code Exec (CVE-2024-33502)
CVE-2024-33502 7.2 - High - January 14, 2025

An improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiManager, FortiAnalyzer versions 7.4.0 through 7.4.2 and 7.2.0 through 7.2.5 and 7.0.0 through 7.0.12 and 6.4.0 through 6.4.14 and 6.2.0 through 6.2.12 and 6.0.0 through 6.0.12 allows attacker to execute unauthorized code or commands via crafted HTTP or HTTPs requests.

Directory traversal

FortiManager 7.4.x RelPath Traversal Delete Files via HTTP
CVE-2024-32115 5.5 - Medium - January 14, 2025

A relative path traversal vulnerability [CWE-23] in Fortinet FortiManager version 7.4.0 through 7.4.2 and before 7.2.5 allows a privileged attacker to delete files from the underlying filesystem via crafted HTTP or HTTPs requests.

Directory traversal

SQL Injection in FortiAnalyzer 7.4.0-7.4.2 -> Priv Escalation
CVE-2024-35275 8.8 - High - January 14, 2025

A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiAnalyzer version 7.4.0 through 7.4.2, FortiManager version 7.4.0 through 7.4.2 allows attacker to escalation of privilege via specially crafted http requests.

SQL Injection

Unauth Access to Managed Config via FortiPortal 6.0.0-6.0.15, FortiManager 7.0.0-7.4.2
CVE-2024-35277 7.5 - High - January 14, 2025

A missing authentication for critical function in Fortinet FortiPortal version 6.0.0 through 6.0.15, FortiManager version 7.4.0 through 7.4.2, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14 allows attacker to access to the configuration of the managed devices by sending specifically crafted packets

Missing Authentication for Critical Function

FortiAnalyzer/FortiManager SBOV CVE-2024-35276 (v7.47.0, 6.4)
CVE-2024-35276 9.8 - Critical - January 14, 2025

A stack-based buffer overflow in Fortinet FortiAnalyzer versions 7.4.0 through 7.4.3, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14, FortiManager versions 7.4.0 through 7.4.3, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14, FortiManager Cloud versions 7.4.1 through 7.4.3, 7.2.1 through 7.2.5, 7.0.1 through 7.0.11, 6.4.1 through 6.4.7, FortiAnalyzer Cloud versions 7.4.1 through 7.4.3, 7.2.1 through 7.2.5, 7.0.1 through 7.0.11, 6.4.1 through 6.4.7 allows attacker to execute unauthorized code or commands via specially crafted packets.

Memory Corruption

Fortinet FortiManager/FortiAnalyzer Use After Free Vulnerability
CVE-2021-32589 9.8 - Critical - December 19, 2024

A Use After Free (CWE-416) vulnerability in FortiManager version 7.0.0, version 6.4.5 and below, version 6.2.7 and below, version 6.0.10 and below, version 5.6.10 and below, version 5.4.7 and below, version 5.2.10 and below, version 5.0.12 and below and FortiAnalyzer version 7.0.0, version 6.4.5 and below, version 6.2.7 and below, version 6.0.10 and below, version 5.6.10 and below, version 5.4.7 and below, version 5.3.11, version 5.2.10 to 5.2.4 fgfmsd daemon may allow a remote, non-authenticated attacker to execute unauthorized code as root via sending a specifically crafted request to the fgfm port of the targeted device.

Dangling pointer

FortiManager OS Command Injection Vulnerability in FGFM
CVE-2024-48889 - December 18, 2024

An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78] in FortiManager version 7.6.0, version 7.4.4 and below, version 7.2.7 and below, version 7.0.12 and below, version 6.4.14 and below and FortiManager Cloud version 7.4.4 and below, version 7.2.7 to 7.2.1, version 7.0.12 to 7.0.1 may allow an authenticated remote attacker to execute unauthorized code via FGFM crafted requests.

Shell injection

Fortinet FortiManager/FortiAnalyzer OS Command Injection Vulnerability
CVE-2024-32118 6.7 - Medium - November 12, 2024

Multiple improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerabilities [CWE-78] in Fortinet FortiManager version 7.4.0 through 7.4.2 and before 7.2.5, Fortinet FortiAnalyzer version 7.4.0 through 7.4.2 and before 7.2.5 and Fortinet FortiAnalyzer-BigData before 7.4.0 allows an authenticated privileged attacker to execute unauthorized code or commands via crafted CLI requests.

Shell injection

Fortinet FortiManager/FortiAnalyzer/FortiAnalyzer-BigData: Multiple Relative Path Traversal Vulnerab
CVE-2024-32116 6 - Medium - November 12, 2024

Multiple relative path traversal vulnerabilities [CWE-23] in Fortinet FortiManager version 7.4.0 through 7.4.2 and before 7.2.5, FortiAnalyzer version 7.4.0 through 7.4.2 and before 7.2.5 and FortiAnalyzer-BigData version 7.4.0 and before 7.2.7 allows a privileged attacker to delete files from the underlying filesystem via crafted CLI requests.

Directory traversal

Fortinet FortiManager/FortiAnalyzer Stack-Based Buffer Overflow Vulnerability
CVE-2024-31496 6.7 - Medium - November 12, 2024

A stack-based buffer overflow vulnerability [CWE-121] in Fortinet FortiManager version 7.4.0 through 7.4.2 and before 7.2.5, FortiAnalyzer version 7.4.0 through 7.4.2 and before 7.2.5 and FortiAnalyzer-BigData 7.4.0 and before 7.2.7 allows a privileged attacker to execute unauthorized code or commands via crafted CLI requests.

Memory Corruption

Fortinet FortiManager/FortiPAM/FortiProxy/FortiSwitchManager/FortiPortal/FortiOS: Missing Authentica
CVE-2024-26011 9.8 - Critical - November 12, 2024

A missing authentication for critical function in Fortinet FortiManager version 7.4.0 through 7.4.2, 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.14, FortiPAM version 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiProxy version 7.4.0 through 7.4.2, 7.2.0 through 7.2.9, 7.0.0 through 7.0.17, 2.0.0 through 2.0.14, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7, FortiSwitchManager version 7.2.0 through 7.2.3, 7.0.0 through 7.0.3, FortiPortal version 6.0.0 through 6.0.14, FortiOS version 7.4.0 through 7.4.3, 7.2.0 through 7.2.7, 7.0.0 through 7.0.14, 6.4.0 through 6.4.15, 6.2.0 through 6.2.16, 6.0.0 through 6.0.18 allows attacker to execute unauthorized code or commands via specially crafted packets.

Missing Authentication for Critical Function

Fortinet FortiManager/FortiAnalyzer Path Traversal Vulnerability
CVE-2024-32117 4.9 - Medium - November 12, 2024

An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-22] in Fortinet FortiManager version 7.4.0 through 7.4.2 and below 7.2.5, FortiAnalyzer version 7.4.0 through 7.4.2 and below 7.2.5 & FortiAnalyzer-BigData version 7.4.0 and below 7.2.7 allows a privileged attacker to read arbitrary files from the underlying system via crafted HTTP or HTTPs requests.

Directory traversal

Fortinet FortiAnalyzer-BigData: Client-Side Enforcement of Server-Side Security Vulnerability
CVE-2024-23666 8.8 - High - November 12, 2024

A client-side enforcement of server-side security in Fortinet FortiAnalyzer-BigData at least version 7.4.0 and 7.2.0 through 7.2.6 and 7.0.1 through 7.0.6 and 6.4.5 through 6.4.7 and 6.2.5, FortiManager version 7.4.0 through 7.4.1 and 7.2.0 through 7.2.4 and 7.0.0 through 7.0.11 and 6.4.0 through 6.4.14, FortiAnalyzer version 7.4.0 through 7.4.1 and 7.2.0 through 7.2.4 and 7.0.0 through 7.0.11 and 6.4.0 through 6.4.14 allows attacker to improper access control via crafted requests.

Client-Side Enforcement of Server-Side Security

Fortinet FortiAnalyzer/FortiManager Heap-Based Buffer Overflow Privilege Escalation Vulnerability
CVE-2024-33505 7.3 - High - November 12, 2024

A heap-based buffer overflow in Fortinet FortiAnalyzer version 7.4.0 through 7.4.2, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14, FortiManager version 7.4.0 through 7.4.2, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14 allows attacker to escalation of privilege via specially crafted http requests

Memory Corruption

Fortinet FortiAnalyzer/FortiManager Path Traversal Vulnerability
CVE-2024-35274 2.3 - Low - November 12, 2024

An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-22] in Fortinet FortiAnalyzer versions below 7.4.2, Fortinet FortiManager versions below 7.4.2 and Fortinet FortiAnalyzer-BigData version 7.4.0 and below 7.2.7 allows a privileged attacker with read write administrative privileges to create non-arbitrary files on a chosen directory via crafted CLI requests.

Directory traversal

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Fortinet FortiManager or by Fortinet? Click the Watch button to subscribe.

Fortinet
Vendor

Fortinet FortiManager
Product

Fortinet FortiManager

Don't miss out!

Known Exploited Fortinet FortiManager Vulnerabilities

By the Year

Recent Fortinet FortiManager Security Vulnerabilities

FortiAnalyzer/Manager 7.x/Cloud auth bypass via race condition (CVE-2026-22629) CVE-2026-22629 3.4 - Low - March 10, 2026

FortiAnalyzer/Manager Cert Validation Flaw 7.x & 6.x MitM CVE-2025-68482 6.3 - Medium - March 10, 2026

Fortinet FortiAnalyzer/Manager 7.x6.4 Priv Esc via Hidden CLI Cmd CVE-2025-48418 6.4 - Medium - March 10, 2026

FortiAnalyzer & FortiManager Auth bypass via crafted requests, v7.2-7.6 CVE-2026-22572 6.8 - Medium - March 10, 2026

Format String Privilege Escalation in FortiAnalyzer/Manager 7.0-7.6.4 CVE-2025-68648 6.5 - Medium - March 10, 2026

FortiManager 7.4.07.4.2 Stack Buffer Overflow CVE202554820 CVE-2025-54820 7 - High - March 10, 2026

Fortinet FortiOS Auth Bypass 7.07.6 via Alt Channel CVE-2026-24858 9.4 - Critical - January 27, 2026

Fortinet FortiAnalyzer PKI Leak (CVE-2024-40593) Fixed 7.4.3 CVE-2024-40593 5.9 - Medium - December 11, 2025

Fortinet Forti* - Sensitive Data Disclosure via Crafted Packets (v<=7.6) CVE-2024-47569 4.2 - Medium - October 14, 2025

FortiOS 6.07.6 Heap Overflow via Crafted Requests CVE-2024-50571 6.5 - Medium - October 14, 2025

Path Traversal in FortiManager FGFM (v7.6.0-7.6.1+) CVE-2024-52964 6.5 - Medium - August 12, 2025

FortiManager/Analyzer SQL Injection before 7.6.2 (CWE-89) CVE-2025-24474 - July 08, 2025

FortiManager 7.2.0-7.2.1/7.0.0-7.0.7: Auth Miss. Overwrites Global Threat Feeds CVE-2024-54020 4.3 - Medium - May 28, 2025

FortiAnalyzer/Manager Log Injection via CWE-117 (Log Neutralization Failure) CVE-2024-52962 - April 08, 2025

FortiOS/Proxy/Manager CVE-2024-26013: Improper Channel Restriction (CWE-923) CVE-2024-26013 7.1 - High - April 08, 2025

Fortinet FortiOS <=7.4.3 Vulnerable to MIM Impersonation (CVE-2024-50565) CVE-2024-50565 7.5 - High - April 08, 2025

FortiOS/FortiProxy 7.x Admin Interface Buffer Underwrite (CVE-2023-25610) CVE-2023-25610 - March 24, 2025

FortiManager/Analyzer 7.4.0 evtlog Leak of Private Keys (CWE-532) CVE-2024-40585 - March 14, 2025

FortiManager 7.4.1-7.4.3 Priv Escalation via Cmd Injection in Crafted Packets CVE-2024-46662 - March 14, 2025

FortiAnalyzer/FortiManager CLI SQLi v7.4.0-7.4.2 CVE-2024-33501 6.7 - Medium - March 11, 2025

FortiManager/Analyzer OS Command Injection 5.0–7.4 CVE-2024-32123 CVE-2024-32123 - March 11, 2025

FortiManager hard-coded key crypto flaw (CWE-321) 7.07.6.1 API decryption CVE-2024-33504 7.7 - High - February 11, 2025

FortiManager/Analyzer: Path Traversal via CLI, admin file deletion 7.4.2 CVE-2024-36508 - February 11, 2025

FortiAnalyzer/Manager OS Cmd Inject (CWE-78) v<7.4.3,7.2.5,7.0.13,6.4.15,6.2.13 CVE-2024-40584 - February 11, 2025

Fortinet FortiManager/<others> <=7.4.3 Cache Poison via External Host Header CVE-2022-23439 4.1 - Medium - January 22, 2025

Weak Auth in FortiManager/FortiAnalyzer 7.4.x7.6.x Allows Unauth Code Exec CVE-2024-50563 9.8 - Critical - January 16, 2025

FortiAnalyzer/FortiManager Priv Escalation v7.4.0-7.2.5, 6.4.0-6.4.15 CVE-2024-45331 7.8 - High - January 16, 2025

Fortinet FortiRecorder PathTraversal (v7.2.0-7.2.1, v7.0.0-7.0.4) CVE-2024-48885 5.2 - Medium - January 16, 2025

Fortinet FortiOS <=7.4.4 Weak Auth BruteForce Code Exec CVE-2024-48886 9.8 - Critical - January 14, 2025

FortiManager OS CMD INJ CVE-2024-50566 (v7.2.87.6.1) CVE-2024-50566 7.2 - High - January 14, 2025

Path Trv Remote Auth Write in FortiManager 7.6.0-7.6.1, 7.4.1-7.4.3 (Fortinet) CVE-2024-48884 7.1 - High - January 14, 2025

FortiManager 6.4.12-7.4.0 Improper Access via Expired Resource Operation CVE-2024-47571 9.8 - Critical - January 14, 2025

FortiManager Path Traversal Enables Remote Code Exec v7.4.3 and Earlier CVE-2024-36512 7.2 - High - January 14, 2025

OOB Write in Fortinet FortiManager s/7.4.0-7.4.2 & FortiAnalyzer 7.4.0-7.4.2 CVE-2024-35273 8.8 - High - January 14, 2025

Privilege Escalation in Fortinet FortiManager & FortiAnalyzer (v6.4.0-7.4.3) CVE-2024-33503 7.8 - High - January 14, 2025

FortiManager 7.4.x Path Traversal Enables Remote Code Exec (CVE-2024-33502) CVE-2024-33502 7.2 - High - January 14, 2025

FortiManager 7.4.x RelPath Traversal Delete Files via HTTP CVE-2024-32115 5.5 - Medium - January 14, 2025

SQL Injection in FortiAnalyzer 7.4.0-7.4.2 -> Priv Escalation CVE-2024-35275 8.8 - High - January 14, 2025

Unauth Access to Managed Config via FortiPortal 6.0.0-6.0.15, FortiManager 7.0.0-7.4.2 CVE-2024-35277 7.5 - High - January 14, 2025

FortiAnalyzer/FortiManager SBOV CVE-2024-35276 (v7.47.0, 6.4) CVE-2024-35276 9.8 - Critical - January 14, 2025

Fortinet FortiManager/FortiAnalyzer Use After Free Vulnerability CVE-2021-32589 9.8 - Critical - December 19, 2024

FortiManager OS Command Injection Vulnerability in FGFM CVE-2024-48889 - December 18, 2024

Fortinet FortiManager/FortiAnalyzer OS Command Injection Vulnerability CVE-2024-32118 6.7 - Medium - November 12, 2024

Fortinet FortiManager/FortiAnalyzer/FortiAnalyzer-BigData: Multiple Relative Path Traversal Vulnerab CVE-2024-32116 6 - Medium - November 12, 2024

Fortinet FortiManager/FortiAnalyzer Stack-Based Buffer Overflow Vulnerability CVE-2024-31496 6.7 - Medium - November 12, 2024

Fortinet FortiManager/FortiPAM/FortiProxy/FortiSwitchManager/FortiPortal/FortiOS: Missing Authentica CVE-2024-26011 9.8 - Critical - November 12, 2024

Fortinet FortiManager/FortiAnalyzer Path Traversal Vulnerability CVE-2024-32117 4.9 - Medium - November 12, 2024

Fortinet FortiAnalyzer-BigData: Client-Side Enforcement of Server-Side Security Vulnerability CVE-2024-23666 8.8 - High - November 12, 2024

Fortinet FortiAnalyzer/FortiManager Heap-Based Buffer Overflow Privilege Escalation Vulnerability CVE-2024-33505 7.3 - High - November 12, 2024

Fortinet FortiAnalyzer/FortiManager Path Traversal Vulnerability CVE-2024-35274 2.3 - Low - November 12, 2024

Stay on top of Security Vulnerabilities

Fortinet Vendor

Fortinet FortiManagerProduct

FortiAnalyzer/Manager 7.x/Cloud auth bypass via race condition (CVE-2026-22629)
CVE-2026-22629 3.4 - Low - March 10, 2026

FortiAnalyzer/Manager Cert Validation Flaw 7.x & 6.x MitM
CVE-2025-68482 6.3 - Medium - March 10, 2026

Fortinet FortiAnalyzer/Manager 7.x6.4 Priv Esc via Hidden CLI Cmd
CVE-2025-48418 6.4 - Medium - March 10, 2026

FortiAnalyzer & FortiManager Auth bypass via crafted requests, v7.2-7.6
CVE-2026-22572 6.8 - Medium - March 10, 2026

Format String Privilege Escalation in FortiAnalyzer/Manager 7.0-7.6.4
CVE-2025-68648 6.5 - Medium - March 10, 2026

FortiManager 7.4.07.4.2 Stack Buffer Overflow CVE202554820
CVE-2025-54820 7 - High - March 10, 2026

Fortinet FortiOS Auth Bypass 7.07.6 via Alt Channel
CVE-2026-24858 9.4 - Critical - January 27, 2026

Fortinet FortiAnalyzer PKI Leak (CVE-2024-40593) Fixed 7.4.3
CVE-2024-40593 5.9 - Medium - December 11, 2025

Fortinet Forti* - Sensitive Data Disclosure via Crafted Packets (v<=7.6)
CVE-2024-47569 4.2 - Medium - October 14, 2025

FortiOS 6.07.6 Heap Overflow via Crafted Requests
CVE-2024-50571 6.5 - Medium - October 14, 2025

Path Traversal in FortiManager FGFM (v7.6.0-7.6.1+)
CVE-2024-52964 6.5 - Medium - August 12, 2025

FortiManager/Analyzer SQL Injection before 7.6.2 (CWE-89)
CVE-2025-24474 - July 08, 2025

FortiManager 7.2.0-7.2.1/7.0.0-7.0.7: Auth Miss. Overwrites Global Threat Feeds
CVE-2024-54020 4.3 - Medium - May 28, 2025

FortiAnalyzer/Manager Log Injection via CWE-117 (Log Neutralization Failure)
CVE-2024-52962 - April 08, 2025

FortiOS/Proxy/Manager CVE-2024-26013: Improper Channel Restriction (CWE-923)
CVE-2024-26013 7.1 - High - April 08, 2025

Fortinet FortiOS <=7.4.3 Vulnerable to MIM Impersonation (CVE-2024-50565)
CVE-2024-50565 7.5 - High - April 08, 2025

FortiOS/FortiProxy 7.x Admin Interface Buffer Underwrite (CVE-2023-25610)
CVE-2023-25610 - March 24, 2025

FortiManager/Analyzer 7.4.0 evtlog Leak of Private Keys (CWE-532)
CVE-2024-40585 - March 14, 2025

FortiManager 7.4.1-7.4.3 Priv Escalation via Cmd Injection in Crafted Packets
CVE-2024-46662 - March 14, 2025

FortiAnalyzer/FortiManager CLI SQLi v7.4.0-7.4.2
CVE-2024-33501 6.7 - Medium - March 11, 2025

FortiManager/Analyzer OS Command Injection 5.0–7.4 CVE-2024-32123
CVE-2024-32123 - March 11, 2025

FortiManager hard-coded key crypto flaw (CWE-321) 7.07.6.1 API decryption
CVE-2024-33504 7.7 - High - February 11, 2025

FortiManager/Analyzer: Path Traversal via CLI, admin file deletion 7.4.2
CVE-2024-36508 - February 11, 2025

FortiAnalyzer/Manager OS Cmd Inject (CWE-78) v<7.4.3,7.2.5,7.0.13,6.4.15,6.2.13
CVE-2024-40584 - February 11, 2025

Fortinet FortiManager/<others> <=7.4.3 Cache Poison via External Host Header
CVE-2022-23439 4.1 - Medium - January 22, 2025

Weak Auth in FortiManager/FortiAnalyzer 7.4.x7.6.x Allows Unauth Code Exec
CVE-2024-50563 9.8 - Critical - January 16, 2025

FortiAnalyzer/FortiManager Priv Escalation v7.4.0-7.2.5, 6.4.0-6.4.15
CVE-2024-45331 7.8 - High - January 16, 2025

Fortinet FortiRecorder PathTraversal (v7.2.0-7.2.1, v7.0.0-7.0.4)
CVE-2024-48885 5.2 - Medium - January 16, 2025

Fortinet FortiOS <=7.4.4 Weak Auth BruteForce Code Exec
CVE-2024-48886 9.8 - Critical - January 14, 2025

FortiManager OS CMD INJ CVE-2024-50566 (v7.2.87.6.1)
CVE-2024-50566 7.2 - High - January 14, 2025

Path Trv Remote Auth Write in FortiManager 7.6.0-7.6.1, 7.4.1-7.4.3 (Fortinet)
CVE-2024-48884 7.1 - High - January 14, 2025

FortiManager 6.4.12-7.4.0 Improper Access via Expired Resource Operation
CVE-2024-47571 9.8 - Critical - January 14, 2025

FortiManager Path Traversal Enables Remote Code Exec v7.4.3 and Earlier
CVE-2024-36512 7.2 - High - January 14, 2025

OOB Write in Fortinet FortiManager s/7.4.0-7.4.2 & FortiAnalyzer 7.4.0-7.4.2
CVE-2024-35273 8.8 - High - January 14, 2025

Privilege Escalation in Fortinet FortiManager & FortiAnalyzer (v6.4.0-7.4.3)
CVE-2024-33503 7.8 - High - January 14, 2025

FortiManager 7.4.x Path Traversal Enables Remote Code Exec (CVE-2024-33502)
CVE-2024-33502 7.2 - High - January 14, 2025

FortiManager 7.4.x RelPath Traversal Delete Files via HTTP
CVE-2024-32115 5.5 - Medium - January 14, 2025

SQL Injection in FortiAnalyzer 7.4.0-7.4.2 -> Priv Escalation
CVE-2024-35275 8.8 - High - January 14, 2025

Unauth Access to Managed Config via FortiPortal 6.0.0-6.0.15, FortiManager 7.0.0-7.4.2
CVE-2024-35277 7.5 - High - January 14, 2025

FortiAnalyzer/FortiManager SBOV CVE-2024-35276 (v7.47.0, 6.4)
CVE-2024-35276 9.8 - Critical - January 14, 2025

Fortinet FortiManager/FortiAnalyzer Use After Free Vulnerability
CVE-2021-32589 9.8 - Critical - December 19, 2024

FortiManager OS Command Injection Vulnerability in FGFM
CVE-2024-48889 - December 18, 2024

Fortinet FortiManager/FortiAnalyzer OS Command Injection Vulnerability
CVE-2024-32118 6.7 - Medium - November 12, 2024

Fortinet FortiManager/FortiAnalyzer/FortiAnalyzer-BigData: Multiple Relative Path Traversal Vulnerab
CVE-2024-32116 6 - Medium - November 12, 2024

Fortinet FortiManager/FortiAnalyzer Stack-Based Buffer Overflow Vulnerability
CVE-2024-31496 6.7 - Medium - November 12, 2024

Fortinet FortiManager/FortiPAM/FortiProxy/FortiSwitchManager/FortiPortal/FortiOS: Missing Authentica
CVE-2024-26011 9.8 - Critical - November 12, 2024

Fortinet FortiManager/FortiAnalyzer Path Traversal Vulnerability
CVE-2024-32117 4.9 - Medium - November 12, 2024

Fortinet FortiAnalyzer-BigData: Client-Side Enforcement of Server-Side Security Vulnerability
CVE-2024-23666 8.8 - High - November 12, 2024

Fortinet FortiAnalyzer/FortiManager Heap-Based Buffer Overflow Privilege Escalation Vulnerability
CVE-2024-33505 7.3 - High - November 12, 2024

Fortinet FortiAnalyzer/FortiManager Path Traversal Vulnerability
CVE-2024-35274 2.3 - Low - November 12, 2024

Fortinet
Vendor

Fortinet FortiManager
Product