Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 43+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
CVSS 4.8
Fortinet SSL-VPN Integer Overflow Vulnerability (CVE-2025-25248) Advisory
fortiguard.fortinet.com · 2025-08-14

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Integer Overflow or Wraparound (CWE-190) - **Affected Components**: FortiOS, FortiPAM, and FortiProxy SSL-VPN RDP and VNC Book…

Read more
CVSS 5.2
FortiManager Path Traversal Vulnerability (CVE-2024-52964) Advisory
fortiguard.fortinet.com · 2025-08-14

### Critical Vulnerability Information #### Vulnerability Overview - **Vulnerability Type**: Path Traversal (CWE-22) - **Affected Products**: FortiManager and FortiManager Cloud - **Description**: An …

Read more
CVSS 6.3
Fortinet FortiSandbox/Isolator Insufficient Session Expiration Vulnerability (CVE-2024-27779)
fortiguard.fortinet.com · 2025-07-19

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Inadequate Session Expiration (CWE-613) - **Affected Products**: FortiSandbox and FortiIsolator - **Description**: Remote atta…

Read more
CVSS 2.6
Fortinet FortiAnalyzer SQL Injection Vulnerability Advisory (CVE-2025-24474)
fortiguard.fortinet.com · 2025-07-12

### Key Information #### Vulnerability Overview - **Vulnerability Type**: SQL Injection (SQLi) - **CVE ID**: CVE-2025-24474 - **CVSSv3 Score**: 2.6 - **Severity**: Low - **Impact**: May allow an authe…

Read more
CVSS 4.9
Fortinet FortiOS/Proxy DNS Type 65 Resource Record Bypass Vulnerability (CVE-2024-55599)
fortiguard.fortinet.com · 2025-07-12

### Key Information #### Vulnerability Overview - **Vulnerability Type**: DNS type 65 resource record requests bypass DNS filter - **CVE ID**: CVE-2024-55599 - **CVSSv3 Score**: 4.9 - **Severity**: Me…

Read more
CVSS 6.0
Fortinet FortiPAM/FortiSRA Improper Access Control Vulnerability (CVE-2025-22256)
fortiguard.fortinet.com · 2025-06-12

## Critical Vulnerability Information ### Vulnerability Overview - **Vulnerability Type**: Improper Handling of Insufficient Privileges or Permissions (CWE-280) - **Affected Component**: GUI websocket…

Read more
CVSS 3.1
FortiOS/Proxy CLI Incomplete Cleanup Vulnerability (CVE-2023-29184) Advisory
fortiguard.fortinet.com · 2025-06-12

## Critical Vulnerability Information ### Vulnerability Overview - **Vulnerability Type**: Incomplete Cleanup (CWE-459) - **Affected Products**: FortiOS and FortiProxy - **Description**: This vulnerab…

Read more
CVSS 6.5
Fortinet FortiOS/Proxy/Web CVE-2025-22254 Privilege Escalation Advisory
fortiguard.fortinet.com · 2025-06-12

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Privilege escalation - **Affected Products**: FortiOS, FortiProxy, FortiWeb - **CVE ID**: CVE-2025-22254 - **CVSSv3 Score**: 6…

Read more
CVSS 4.8
FortiOS CVE-2025-47294 Integer Overflow DoS Vulnerability Advisory
fortiguard.fortinet.com · 2025-05-29

### Critical Vulnerability Information #### Vulnerability Overview - **Type**: Integer Overflow or Wraparound Vulnerability (CWE-190) - **Impact**: FortiOS Security Fabric may allow a remote unauthent…

Read more
Premium intel
CVSS 9.0
Fortinet FortiOS/Proxy/FSM TACACS+ ASCII Auth Bypass (CVE-2025-22252)
fortiguard.fortinet.com · 2025-05-29

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Missing Critical Function Authentication (CWE-306) - **Affected Products**: FortiOS, FortiProxy, FortiSwitchManager - **Condit…

Read more
CVSS 5.0
Fortinet FortiManager/Analyzer Log Injection Vulnerability (CVE-2024-52962) Advisory
fortiguard.fortinet.com · 2025-04-09

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Log Pollution via login page - **CWE ID**: CWE-117 - **Affected Products**: FortiManager and FortiAnalyzer - **Description**: …

Read more
CVSS 5.0
Fortinet FortiMail/DDoS CVE-2020-15933 Information Disclosure Advisory
fortiguard.fortinet.com · 2025-03-29

### Key Information #### Vulnerability Overview - **Vulnerability ID**: FG-IR-20-105 - **Release Date**: November 3, 2020 - **Update Date**: March 28, 2025 - **Severity**: Medium - **CVSSv3 Score**: 5…

Read more
CVSS 6.7
FortiClient Windows DLL Hijacking Vulnerability Advisory (CVE-2024-36507)
fortiguard.fortinet.com · 2024-11-17

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Name**: Online Installer DLL Hijacking 2. **Vulnerability Description**: FortiCl…

Read more
CVSS 5.2
Fortinet FortiOS/FortiManager Tunnel Data Injection Vulnerability
fortiguard.fortinet.com · 2024-11-17

### Key Information #### Vulnerability Description - **Title**: FortiOS - Improper authentication in fgfmd - **Description**: A vulnerability that allows an unauthorized attacker to inject (but not re…

Read more
CVSS 3.6
Fortinet SSLVPN Web UI Text Injection Vulnerability (CVE-2024-33510) Advisory
fortiguard.fortinet.com · 2024-11-17

### Key Information #### Vulnerability Description - **Title**: SSLVPN WEB UI Text injection - **Description**: A vulnerability (CWE-74) in the output of a downstream component ('Injection') that fail…

Read more
CVSS 5.3
Fortinet FortiAnalyzer/Manager Heap Buffer Overflow (CVE-2024-33505)
fortiguard.fortinet.com · 2024-11-17

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Name**: Heap buffer overflow in httpd 2. **Vulnerability ID**: FG-IR-24-125 3. *…

Read more
CVSS 6.8
Fortinet FortiClient MacOS Missing Signature Verification Vulnerability (CVE-2024-40592)
fortiguard.fortinet.com · 2024-11-17

### Key Information 1. **Vulnerability Name**: - FortiClientMacOS - Missing signature verification 2. **Vulnerability Description**: - Improper handling of cryptographic signature verification (CWE-34…

Read more
CVSS 6.3
Fortinet FortiAnalyzer/Manager CLI Command Injection Vulnerability (CVE-2024-32118) Advisory
fortiguard.fortinet.com · 2024-11-17

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Name**: OS command injection in CLI command 2. **Vulnerability ID**: FG-IR-24-11…

Read more
CVSS 4.8
Fortinet FortiAnalyzer/Manager Path Traversal Vulnerability (CVE-2024-32116) Advisory
fortiguard.fortinet.com · 2024-11-17

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Name**: Path traversal vulnerability in CLI commands 2. **Vulnerability ID**: FG…

Read more
CVSS 4.7
Fortinet FortiManager/Analyzer Path Traversal Vulnerability (CVE-2024-32117)
fortiguard.fortinet.com · 2024-11-17

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Name**: Arbitrary file read in administrative interface 2. **Vulnerability Descr…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.