📦 Fortiisolator

CVE-2020-6649 is an insufficient session expiration vulnerability in Fortinet's FortiIsolator that allows attackers to reuse unexpired admin session IDs to gain administrative privileges. This affects...

This CVE describes two vulnerabilities in FortiIsolator's authentication mechanism: insufficient session expiration allows remote unauthenticated attackers to deauthenticate logged-in administrators v...

This OS command injection vulnerability in Fortinet FortiIsolator allows attackers with super-admin privileges and CLI access to execute arbitrary commands via crafted HTTP requests. It affects FortiI...

This vulnerability allows authenticated attackers with read-only admin permissions and CLI access to execute arbitrary operating system commands on Fortinet FortiIsolator devices. Attackers can achiev...

An improper access control vulnerability in FortiIsolator's logging component allows authenticated read-only users to alter logs via crafted HTTP requests. This affects FortiIsolator versions 2.4.4, 2...