Zero-Day Research | Fixes Available

Fortinet's team of dedicated expert researchers and analysts examine many third party products and software applications daily, looking for weaknesses and exploitable vulnerabilities. When a vulnerability is found the Fortiguard Lab teams work together to create protective measures that can be delivered to our customers and notify the software/product vendor of the vulnerability. Learn More

Please view our Responsible Disclosure Policies

Fortinet Discovers Schneider Electric Smart-UPS SRT 5000 Authentication Bypass Vulnerability

Discovered: Jan 13, 2021 Released: Dec 02, 2021 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo
Fortinet Discovers Schneider Electric Smart-UPS SRT 5000 Stored Cross-Site Scripting Vulnerability

Discovered: Jan 12, 2021 Released: Dec 02, 2021 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo
Fortinet Discovers Schneider Electric Smart-UPS SRT 5000 Stored Cross-Site Scripting Vulnerability

Discovered: Jan 11, 2021 Released: Dec 02, 2021 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo
Fortinet Discovers Schneider Electric Smart-UPS SRT 5000 Cross-Site Request Forgery Vulnerability

Discovered: Jan 13, 2021 Released: Nov 09, 2021 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo
Fortinet Discovers Schneider Electric Smart-UPS SRT 5000 Cross-Site Scripting Vulnerability

Discovered: Dec 30, 2020 Released: Nov 09, 2021 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo CVE-2021-22812
Fortinet Discovers Schneider Electric Smart-UPS SRT 5000 Debug Log File Publicly Accessible Vulnerability

Discovered: Jan 08, 2021 Released: Nov 09, 2021 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo CVE-2021-22815
Fortinet Discovers Schneider Electric Smart-UPS SRT 5000 Reflected Cross-Site Scripting Vulnerability

Discovered: Jan 08, 2021 Released: Nov 09, 2021 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo CVE-2021-22810
Fortinet Discovers Schneider Electric Smart-UPS SRT 5000 Reflected Cross-Site Scripting Vulnerability

Discovered: Jan 13, 2021 Released: Nov 09, 2021 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo CVE-2021-22813
Fortinet Discovers Schneider Electric Smart-UPS SRT 5000 Role Misconfiguration Vulnerability

Discovered: Dec 30, 2020 Released: Nov 09, 2021 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo
Fortinet Discovers Schneider Electric Smart-UPS SRT 5000 Stored Cross-Site Scripting Vulnerability

Discovered: Jan 08, 2021 Released: Nov 09, 2021 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo CVE-2021-22811
Fortinet Discovers Schneider Electric Smart-UPS SRT 5000 User Creation Misconfiguration Vulnerability

Discovered: Dec 30, 2020 Released: Nov 09, 2021 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo
Fortinet Discovers Authentication Bypass By Spoofing Vulnerability In Multiple Schneider Electric Products

Discovered: Sep 09, 2020 Released: Jul 13, 2021 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo CVE-2021-22779
Fortinet Discovers Authentication Bypass Vulnerability In Multiple Schneider Electric Products

Discovered: Sep 02, 2020 Released: Jul 13, 2021 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo CVE-2021-22780
Fortinet Discovers Schneider Electric Modicon Embedded HTTP Server Out-Of-Bounds Read Vulnerability

Discovered: Aug 03, 2020 Released: Nov 13, 2020 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo CVE-2020-7562
Fortinet Discovers Schneider Electric Modicon Embedded HTTP Server Out-Of-Bounds Write Vulnerability

Discovered: Aug 04, 2020 Released: Nov 13, 2020 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo CVE-2020-7563
Fortinet Discovers Schneider Electric Modicon Embedded HTTP Server Stack Buffer Overflow Vulnerability

Discovered: Aug 05, 2020 Released: Nov 13, 2020 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo CVE-2020-7564
Fortinet Discovers Schneider Electric Modicon Insecure Credential Transmission Vulnerability

Discovered: Jul 23, 2020 Released: Oct 13, 2020 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo CVE-2017-6028
Fortinet Discovers Schneider Electric VAMPSET Memory Corruption Vulnerability

Discovered: Dec 21, 2016 Released: May 11, 2017 Risk light-circle-logo light-circle-logo light-circle-logo light-circle-logo light-circle-logo CVE-2017-7967