| | CVE-2024-52961 |  Fortinet | high | 8.8 | 0.2%
| | An improper neutralization of special elements used in an OS Command vulnerability [CWE-78] vulnerab… | Mar 11, 2025 | Jan 14, 2026 |
| | CVE-2024-54026 | Fortinet | medium | 4.3 | 0.1%
| | An improper neutralization of special elements used in an sql command ('sql injection') in Fortinet … | Mar 11, 2025 | Jan 14, 2026 |
| | CVE-2023-37930 | Fortinet | high | 7.5 | 0.6%
| | Multiple issues including the use of uninitialized ressources [CWE-908] and excessive iteration [CWE… | Apr 8, 2025 | Jan 14, 2026 |
| | CVE-2024-35281 | Fortinet | low | 2.5 | 0.1%
| | An improper isolation or compartmentalization vulnerability [CWE-653] in FortiClientMac version 7.4.… | May 13, 2025 | Feb 5, 2026 |
| | CVE-2025-32756 | Fortinet | critical | 9.8 | 41.6%
| ⚠ KEV | A stack-based buffer overflow vulnerability [CWE-121] vulnerability in Fortinet FortiCamera 2.1.0 th… | May 13, 2025 | Jan 14, 2026 |
| | CVE-2025-24473 | Fortinet | low | 3.7 | 0.1%
| | A exposure of sensitive system information to an unauthorized control sphere vulnerability in Fortin… | May 28, 2025 | Jan 8, 2026 |
| | CVE-2025-22254 | Fortinet | medium | 6.6 | 0.1%
| | An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 thr… | Jun 10, 2025 | Jan 14, 2026 |
| | CVE-2025-25257 | Fortinet | critical | 9.8 | 28.1%
| ⚠ KEV | An improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerabilit… | Jul 17, 2025 | Feb 20, 2026 |
| | CVE-2023-45584 | Fortinet | medium | 6.6 | 0.2%
| | A double free vulnerability [CWE-415] vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through… | Aug 12, 2025 | Jan 14, 2026 |
| | CVE-2024-26009 | Fortinet | high | 8.1 | 0.1%
| | An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet Fort… | Aug 12, 2025 | Apr 20, 2026 |
| | CVE-2024-40588 | Fortinet | medium | 4.4 | 0.0%
| | Multiple relative path traversal vulnerabilities [CWE-23] vulnerability in Fortinet FortiCamera 2.1 … | Aug 12, 2025 | Jan 14, 2026 |
| | CVE-2024-47569 | Fortinet | medium | 4.3 | 0.0%
| | A insertion of sensitive information into sent data vulnerability in Fortinet FortiMail 7.4.0 throug… | Oct 14, 2025 | Jan 14, 2026 |
| | CVE-2024-50571 | Fortinet | high | 7.2 | 0.1%
| | A heap-based buffer overflow vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.2, FortiAnaly… | Oct 14, 2025 | Jan 27, 2026 |
| | CVE-2025-25255 | Fortinet | medium | 5.3 | 0.0%
| | An Improperly Implemented Security Check for Standard vulnerability [CWE-358] vulnerability in Forti… | Oct 14, 2025 | Jan 14, 2026 |
| | CVE-2025-31366 | Fortinet | medium | 4.7 | 0.0%
| | An Improper Neutralization of Input During Web Page Generation vulnerability [CWE-79] vulnerability … | Oct 14, 2025 | Jan 14, 2026 |
| | CVE-2025-47890 | Fortinet | low | 2.6 | 0.0%
| | An URL Redirection to Untrusted Site vulnerabilities [CWE-601] vulnerability in Fortinet FortiOS 7.6… | Oct 14, 2025 | Jan 14, 2026 |
| | CVE-2025-49201 | Fortinet | high | 8.1 | 0.1%
| | A weak authentication vulnerability in Fortinet FortiPAM 1.5.0, FortiPAM 1.4.0 through 1.4.2, FortiP… | Oct 14, 2025 | Jan 14, 2026 |
| | CVE-2025-54822 | Fortinet | medium | 4.3 | 0.0%
| | An improper authorization vulnerability [CWE-285] vulnerability in Fortinet FortiOS 7.4.0 through 7.… | Oct 14, 2025 | Jan 14, 2026 |
| | CVE-2025-54821 | Fortinet | low | 1.9 | 0.0%
| | An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 thr… | Nov 18, 2025 | Jan 14, 2026 |
| | CVE-2025-54972 | Fortinet | medium | 4.3 | 0.0%
| | An improper neutralization of crlf sequences ('crlf injection') vulnerability in Fortinet FortiMail … | Nov 18, 2025 | Jan 14, 2026 |
| | CVE-2025-58692 | Fortinet | high | 8.8 | 0.0%
| | An improper neutralization of special elements used in an SQL Command ("SQL Injection") vulnerabilit… | Nov 18, 2025 | Jan 14, 2026 |
| | CVE-2025-62631 | Fortinet | medium | 5.3 | 0.0%
| | An insufficient session expiration vulnerability [CWE-613] vulnerability in Fortinet FortiOS 7.4.0, … | Dec 9, 2025 | May 12, 2026 |
| | CVE-2025-53679 | Fortinet | high | 7.2 | 0.3%
| | An improper neutralization of special elements used in an OS command ('OS Command Injection') vulner… | Dec 9, 2025 | Feb 5, 2026 |
| | CVE-2025-25249 | Fortinet | high | 8.1 | 0.0%
| | A heap-based buffer overflow vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 th… | Jan 13, 2026 | Feb 23, 2026 |
| | CVE-2025-47855 | Fortinet | critical | 9.8 | 1.2%
| | An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet Fo… | Jan 13, 2026 | Jan 14, 2026 |
| | CVE-2025-58693 | Fortinet | medium | 6.5 | 0.2%
| | An improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in F… | Jan 13, 2026 | Jan 14, 2026 |
| | CVE-2025-59922 | Fortinet | high | 7.2 | 0.1%
| | An improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerabilit… | Jan 13, 2026 | Jan 14, 2026 |
| | CVE-2025-64155 | Fortinet | critical | 9.8 | 0.0%
| | An improper neutralization of special elements used in an os command ('os command injection') vulner… | Jan 13, 2026 | Jan 20, 2026 |
| | CVE-2025-67685 | Fortinet | low | 3.8 | 0.0%
| | A Server-Side Request Forgery (SSRF) vulnerability [CWE-918] vulnerability in Fortinet FortiSandbox … | Jan 13, 2026 | Jan 14, 2026 |
| | CVE-2025-15467 | Fortinet | high | 8.8 | 1.0%
| | Issue summary: Parsing CMS AuthEnvelopedData or EnvelopedData message with
maliciously crafted AEAD … | Jan 27, 2026 | Mar 19, 2026 |
| | CVE-2026-24858 | Fortinet | critical | 9.8 | 6.2%
| ⚠ KEV | An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] vulnerability in… | Jan 27, 2026 | May 12, 2026 |
| | CVE-2026-25815 | Fortinet | low | 3.2 | 0.0%
| | Fortinet FortiOS through 7.6.6 allows attackers to decrypt LDAP credentials stored in device configu… | Feb 5, 2026 | Feb 6, 2026 |
| | CVE-2026-21643 | Fortinet | critical | 9.8 | 38.2%
| ⚠ KEV | An improper neutralization of special elements used in an sql command ('sql injection') vulnerabilit… | Feb 6, 2026 | Apr 14, 2026 |
| | CVE-2025-55018 | Fortinet | medium | 5.2 | 0.1%
| | An inconsistent interpretation of http requests ('http request smuggling') vulnerability in Fortinet… | Feb 10, 2026 | May 12, 2026 |
| | CVE-2025-64157 | Fortinet | medium | 6.7 | 0.0%
| | A use of externally-controlled format string vulnerability in Fortinet FortiOS 7.6.0 through 7.6.4, … | Feb 10, 2026 | May 12, 2026 |
| | CVE-2025-62439 | Fortinet | low | 3.8 | 0.0%
| | An Improper Verification of Source of a Communication Channel vulnerability [CWE-940] vulnerability … | Feb 10, 2026 | May 12, 2026 |
| | CVE-2025-52436 | Fortinet | high | 8.8 | 0.2%
| | An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerabilit… | Feb 10, 2026 | Feb 18, 2026 |
| | CVE-2025-62676 | Fortinet | high | 7.1 | 0.0%
| | An Improper Link Resolution Before File Access ('Link Following') vulnerability [CWE-59] vulnerabili… | Feb 10, 2026 | Feb 12, 2026 |
| | CVE-2025-68686 | Fortinet | medium | 5.9 | 0.0%
| | An Exposure of Sensitive Information to an Unauthorized Actor vulnerability [CWE-200] vulnerability … | Feb 10, 2026 | Feb 12, 2026 |
| | CVE-2026-21743 | Fortinet | high | 7.2 | 0.0%
| | A missing authorization vulnerability in Fortinet FortiAuthenticator 6.6.0 through 6.6.6, FortiAuthe… | Feb 10, 2026 | Feb 12, 2026 |
| | CVE-2026-22153 | Fortinet | high | 8.1 | 0.1%
| | An Authentication Bypass by Primary Weakness vulnerability [CWE-305] vulnerability in Fortinet Forti… | Feb 10, 2026 | Feb 12, 2026 |
| | CVE-2026-22572 | Fortinet | medium | 6.8 | 0.1%
| | An authentication bypass using an alternate path or channel vulnerability in Fortinet FortiAnalyzer … | Mar 10, 2026 | Mar 13, 2026 |
| | CVE-2025-48418 | Fortinet | medium | 6.7 | 0.1%
| | A hidden functionality vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.3, FortiAnalyzer 7.… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2025-48840 | Fortinet | medium | 5.3 | 0.1%
| | An authentication bypass by spoofing vulnerability in Fortinet FortiWeb 7.6.0 through 7.6.3, FortiWe… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2025-49784 | Fortinet | medium | 6.0 | 0.0%
| | An improper neutralization of special elements used in an sql command ('sql injection') vulnerabilit… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2025-53608 | Fortinet | medium | 4.8 | 0.0%
| | An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerabilit… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2025-54659 | Fortinet | medium | 5.8 | 0.1%
| | An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability [CWE… | Mar 10, 2026 | Apr 9, 2026 |
| | CVE-2025-54820 | Fortinet | high | 8.1 | 0.0%
| | A Stack-based Buffer Overflow vulnerability [CWE-121] vulnerability in Fortinet FortiManager 7.4.0 t… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2025-55717 | Fortinet | medium | 4.0 | 0.0%
| | A cleartext storage of sensitive information vulnerability [CWE-312] vulnerability in Fortinet Forti… | Mar 10, 2026 | Mar 12, 2026 |
| | CVE-2025-66178 | Fortinet | high | 7.2 | 0.0%
| | A improper neutralization of special elements used in an os command ('os command injection') vulnera… | Mar 10, 2026 | Mar 12, 2026 |