|
1411
|
9.8 |
CRITICAL
Network
|
fortinet
|
fortisandbox
fortisandbox_cloud
fortisandbox_paas
|
A missing authorization vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.1, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox Cloud 5.0.2 through 5.0.5, FortiSandbox PaaS 23.4 all versions, Fort…
|
CWE-862
Missing Authorization
|
CVE-2026-26083
|
2026-05-15 22:42 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1412
|
9.8 |
CRITICAL
Network
|
fortinet
|
fortiauthenticator
|
A improper access control vulnerability in Fortinet FortiAuthenticator 8.0.2, FortiAuthenticator 8.0.0, FortiAuthenticator 6.6.0 through 6.6.8, FortiAuthenticator 6.5.0 through 6.5.6 may allow attack…
|
CWE-284
Improper Access Control
|
CVE-2026-44277
|
2026-05-15 22:41 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1413
|
10.0 |
CRITICAL
Network
|
cisco
|
catalyst_sd-wan_manager
sd-wan_vsmart_controller
|
May 2026: This security advisory provides the details and fix information for a vulnerability that was discovered and fixed after the was disclosed in February 2026. This new advisory is for a new v…
|
CWE-287
Improper Authentication
|
CVE-2026-20182
|
2026-05-15 21:45 |
2026-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1414
|
7.5 |
HIGH
Network
|
arubanetworks
|
arubaos
sd-wan
|
A heap-based buffer overflow vulnerability exists in a Network management service of AOS-8 and AOS-10 that could allow an unauthenticated remote attacker to achieve remote code execution. Successful …
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2026-23827
|
2026-05-15 21:45 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1415
|
7.5 |
HIGH
Network
|
arubanetworks
|
arubaos
sd-wan
|
A vulnerability in a network management service of AOS-8 Operating System could allow an unauthenticated remote attacker to exploit this vulnerability by sending specially crafted network packets to …
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2026-23826
|
2026-05-15 21:44 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1416
|
7.5 |
HIGH
Network
|
arubanetworks
|
arubaos
sd-wan
|
Vulnerabilities exist in a protocol-handling component of AOS-8 and AOS-10 Operating Systems. An unauthenticated attacker could exploit these vulnerabilities by sending specially crafted network mess…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2026-23824
|
2026-05-15 21:44 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1417
|
7.5 |
HIGH
Network
|
arubanetworks
|
arubaos
sd-wan
|
Vulnerabilities exist in a protocol-handling component of AOS-8 and AOS-10 Operating Systems. An unauthenticated attacker could exploit these vulnerabilities by sending specially crafted network mess…
|
CWE-20
Improper Input Validation
|
CVE-2026-23825
|
2026-05-15 21:44 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1418
|
5.4 |
MEDIUM
Network
|
arubanetworks
|
arubaos
sd-wan
|
A session management vulnerability in AOS-8 allows previously authenticated users to retain network access after their accounts are administratively disabled. Existing sessions are not invalidated wh…
|
CWE-613
Insufficient Session Expiration
|
CVE-2026-44873
|
2026-05-15 21:44 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1419
|
4.9 |
MEDIUM
Network
|
arubanetworks
|
arubaos
|
A vulnerability exists in the web-based management interface of an AOS-10 Gateway that could allow an authenticated remote attacker to access sensitive files on the underlying operating system. Succe…
|
CWE-284
Improper Access Control
|
CVE-2026-44874
|
2026-05-15 21:44 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1420
|
7.2 |
HIGH
Network
|
arubanetworks
|
arubaos
sd-wan
|
Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10 Operating Systems. Successful exploitation of these vulnerabilities could allow an authenticated remo…
|
CWE-77
Command Injection
|
CVE-2026-44865
|
2026-05-15 21:44 |
2026-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
