Fortinet FortiSIEM 5.2.8

CPE Details

Fortinet FortiSIEM 5.2.8
fortinet
fortisiem
5.2.8
2022-11-02
15h28 +00:00
2022-11-02
15h30 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:fortinet:fortisiem:5.2.8:*:*:*:*:*:*:*

Informations

Vendor

fortinet

Product

fortisiem

Version

5.2.8

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-36553 2023-11-14 18h05 +00:00 A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiSIEM version 5.4.0 and 5.3.0 through 5.3.3 and 5.2.5 through 5.2.8 and 5.2.1 through 5.2.2 and 5.1.0 through 5.1.3 and 5.0.0 through 5.0.1 and 4.10.0 and 4.9.0 and 4.7.2 allows attacker to execute unauthorized code or commands via crafted API requests.
9.8
Critical
CVE-2022-42478 2023-06-13 08h41 +00:00 An Improper Restriction of Excessive Authentication Attempts [CWE-307] in FortiSIEM below 7.0.0 may allow a non-privileged user with access to several endpoints to brute force attack these endpoints.
8.8
High
CVE-2022-26119 2022-11-01 23h00 +00:00 A improper authentication vulnerability in Fortinet FortiSIEM before 6.5.0 allows a local attacker with CLI access to perform operations on the Glassfish server directly via a hardcoded password.
7.8
High