Fortinet | writeups.xyz

Title	Vulnerabilities	Programs	Authors
Two Bytes is Plenty: FortiGate RCE with CVE-2024-21762	RCE Out-of-Bounds Write Memory Corruption Patch Diffing	Fortinet	Dylan Pindur
FortiNAC - Just a few more RCEs	RCE XXE Insecure Deserialization OS Command Injection Argument Injection Security Code Review	Fortinet	Florian Hauser (@Frycos)
Producing a POC for CVE-2022-42475 (Fortinet RCE)	Memory Corruption RCE Integer Overflow Heap Overflow	Fortinet	Alain Mowat (@Plopz0r)
FortiOS, FortiProxy, and FortiSwitchManager Authentication Bypass Technical Deep Dive (CVE-2022-40684)	Authentication Bypass	Fortinet	James Horseman (@JamesHorseman2) Zach Hanley (@Hacks_zach)
CVE-2022-26113: FortiClient Arbitrary File Write As SYSTEM	Arbitrary File Write Local Privilege Escalation	Fortinet	David Yesland (@Daveysec)
Weaponizing Middleboxes for TCP Reflected Amplification	DoS	Check Point Cisco F5 Fortinet Juniper Netscout Palo Alto SonicWall Sucuri	Kevin Bock Abdulrahman Alaraj Yair Fax Kyle Hurley Eric Wustrow Dave Levin

Page 1 of 1