|
1311
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A use of potentially dangerous function vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.4, FortiAnalyzer 7.4.0 through 7.4.8, FortiAnalyzer 7.2 all versions, FortiAnalyzer 7.0 all versions,…
New
|
CWE-676
Use of Potentially Dangerous Function
|
CVE-2025-67604
|
2026-05-13 03:57 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1312
|
5.4 |
MEDIUM
Network
|
-
|
-
|
An improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiNDR 7.6.0 through 7.6.2, FortiNDR 7.4.0 through 7.4.9, FortiNDR 7.2 all versions…
New
|
CWE-89
SQL Injection
|
CVE-2026-25088
|
2026-05-13 03:57 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1313
|
4.3 |
MEDIUM
Network
|
-
|
-
|
An improper neutralization of argument delimiters in a command ('argument injection') vulnerability in Fortinet FortiDeceptor 6.0.0 through 6.0.2, FortiDeceptor 5.3.0 through 5.3.3, FortiDeceptor 5.2…
New
|
CWE-88
Argument Injection
|
CVE-2026-25690
|
2026-05-13 03:57 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1314
|
9.8 |
CRITICAL
Network
|
-
|
-
|
A missing authorization vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.1, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox Cloud 5.0.2 through 5.0.5, FortiSandbox PaaS 23.4 all versions, Fort…
New
|
CWE-862
Missing Authorization
|
CVE-2026-26083
|
2026-05-13 03:57 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1315
|
9.8 |
CRITICAL
Network
|
-
|
-
|
A improper access control vulnerability in Fortinet FortiAuthenticator 8.0.2, FortiAuthenticator 8.0.0, FortiAuthenticator 6.6.0 through 6.6.8, FortiAuthenticator 6.5.0 through 6.5.6 may allow attack…
New
|
CWE-284
Improper Access Control
|
CVE-2026-44277
|
2026-05-13 03:57 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1316
|
2.3 |
LOW
Local
|
-
|
-
|
A use of hard-coded cryptographic key vulnerability in Fortinet FortiClientWindows 7.4.0 through 7.4.2, FortiClientWindows 7.2 all versions may allow attacker to information disclosure via <insert at…
New
|
CWE-321
Use of Hard-coded Cryptographic Key
|
CVE-2026-44278
|
2026-05-13 03:57 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1317
|
5.5 |
MEDIUM
Local
|
-
|
-
|
A improper export of android application components vulnerability in Fortinet FortiTokenAndroid 6.2 all versions, FortiTokenAndroid 6.1 all versions, FortiTokenAndroid 5.2 all versions may allow atta…
New
|
CWE-926
Improper Export of Android Application Components
|
CVE-2026-44279
|
2026-05-13 03:57 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1318
|
- |
|
-
|
-
|
Corteza contains a SQL injection vulnerability in its Microsoft SQL Server (MSSQL) backend when filtering Compose records by the meta field.This issue affects corteza: 2024.9.8.
Update
|
CWE-89
SQL Injection
|
CVE-2026-6093
|
2026-05-13 03:56 |
2026-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1319
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Refactor amdgpu_gem_va_ioctl for Handling Last Fence Update and Timeline Management v4
This commit simplifies the amd…
Update
|
CWE-416
Use After Free
|
CVE-2026-43237
|
2026-05-13 03:55 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1320
|
- |
|
-
|
-
|
An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2. An app may be able to access sensitiv…
New
|
-
|
CVE-2025-46311
|
2026-05-13 03:55 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
