Fortinet Forticlient Endpoint Management Server — known CVE vulnerabilities
Every CVE whose affected-product data names Fortinet Forticlient Endpoint Management Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2023-47534 — CVSS 9.6 (critical): A improper neutralization of formula elements in a csv file in Fortinet FortiClientEMS version 7.2.0 through 7.2.2, 7.0.0 through 7.0.10…
CVE-2021-41028 — CVSS 8.2 (high): A combination of a use of hard-coded cryptographic key vulnerability [CWE-321] in FortiClientEMS 7.0.1 and below, 6.4.6 and below and an…
CVE-2021-24019 — CVSS 8.1 (high): An insufficient session expiration vulnerability [CWE- 613] in FortiClientEMS versions 6.4.2 and below, 6.2.8 and below may allow an…
CVE-2024-21753 — CVSS 5.5 (medium): A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiClientEMS versions 7.2.0 through 7.2.4…
CVE-2020-15941 — CVSS 5.4 (medium): A path traversal vulnerability [CWE-22] in FortiClientEMS versions 6.4.1 and below; 6.2.8 and below may allow an authenticated attacker to…
CVE-2021-44172 — CVSS 4.3 (medium): An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiClientEMS versions 7.0.0 through 7.0.4, 7.0.6…