| Max CVSS | 9.0 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2015-3611 | 9.0 |
A Command Injection vulnerability exists in FortiManager 5.2.1 and earlier and FortiManager 5.0.10 and earlier via unspecified vectors, which could let a malicious user run systems commands when executing a report.
|
05-02-2020 - 21:44 | 04-02-2020 - 20:15 | |
| CVE-2015-3612 | 3.5 |
A Cross-site Scripting (XSS) vulnerability exists in FortiManager 5.2.1 and earlier and 5.0.10 and earlier via an unspecified parameter in the FortiWeb auto update service page.
|
05-02-2020 - 21:35 | 04-02-2020 - 20:15 | |
| CVE-2015-3613 | 7.5 |
A vulnerability exists in in FortiManager 5.2.1 and earlier and 5.0.10 and earlier in the WebUI FTP backup page
|
05-02-2020 - 21:17 | 04-02-2020 - 20:15 | |
| CVE-2015-3617 | 4.6 |
Fortinet FortiManager 5.0 before 5.0.11 and 5.2 before 5.2.2 allow local users to gain privileges via crafted CLI commands.
|
29-08-2017 - 14:42 | 22-08-2017 - 15:29 | |
| CVE-2015-3615 | 3.5 |
Cross-site scripting (XSS) vulnerability in Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote authenticated users to inject arbitrary web script or HTML via vectors involving unspecified parameters and a privilege escalation
|
26-08-2017 - 01:29 | 11-08-2017 - 21:29 | |
| CVE-2015-3616 | 7.5 |
SQL injection vulnerability in Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote attackers to execute arbitrary commands via unspecified parameters.
|
26-08-2017 - 01:29 | 11-08-2017 - 21:29 | |
| CVE-2015-3614 | 5.0 |
Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote attackers to obtain arbitrary files via vectors involving another unspecified vulnerability.
|
26-08-2017 - 01:29 | 11-08-2017 - 21:29 |