Fortinet Fortianalyzer_big_data

13 CVEs affecting Fortinet Fortianalyzer_big_data. Latest disclosed: 2026-03-10. Critical: 0, High: 2.

Top CVEs affecting Fortinet Fortianalyzer_big_data
CVESeverityScorePublishedSummary
CVE-2024-23666High7.52024-11-12A client-side enforcement of server-side security in Fortinet FortiAnalyzer-BigData at least version 7.4.0 and 7.2.0 through 7.2.6 and 7.0.1 through 7.0.6 an…
CVE-2024-40584High7.22025-02-11An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in Fortinet FortiAnalyzer version 7.4.0 th…
CVE-2024-32123Medium6.72025-03-11Multiple improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiManager, FortiAnalyzer versions 7.4.0 thro…
CVE-2024-32118Medium6.72024-11-12Multiple improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerabilities [CWE-78] in Fortinet FortiManager version 7…
CVE-2024-31496Medium6.72024-11-12A stack-based buffer overflow vulnerability [CWE-121] in Fortinet FortiManager version 7.4.0 through 7.4.2 and before 7.2.5, FortiAnalyzer version 7.4.0 throug…
CVE-2023-41842Medium6.72024-03-12A use of externally-controlled format string vulnerability [CWE-134] vulnerability in Fortinet allows a privileged attacker to execute unauthorized code or co…
CVE-2025-49784Medium6.02026-03-10An improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.4, FortiAnaly…
CVE-2024-32116Medium5.12024-11-12Multiple relative path traversal vulnerabilities [CWE-23] in Fortinet FortiManager version 7.4.0 through 7.4.2 and before 7.2.5, FortiAnalyzer version 7.4.0 th…
CVE-2023-44254Medium5.02024-09-10An authorization bypass through user-controlled key [CWE-639] vulnerability in FortiAnalyzer version 7.4.1 and before 7.2.5 and FortiManager version 7.4.1 and…
CVE-2024-32117Medium4.92024-11-12An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-22] in Fortinet FortiManager version 7.4.0 through 7.4.2 a…
CVE-2024-33501Medium4.22025-03-11Two improper neutralization of special elements used in an SQL Command ('SQL Injection') vulnerability [CWE-89] in Fortinet FortiAnalyzer version 7.4.0 through…
CVE-2023-44255Medium4.12024-11-12An exposure of sensitive information to an unauthorized actor [CWE-200] in Fortinet FortiManager before 7.4.2, FortiAnalyzer before 7.4.2 and FortiAnalyzer-Big…
CVE-2024-35274Low2.32024-11-12An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-22] in Fortinet FortiAnalyzer versions below 7.4.2, Fortin…