CVSS: 9.8EPSS: 2%CPEs: 3EXPL: 0CVE-2020-12812 – Fortinet FortiOS SSL VPN Improper Authentication Vulnerability
https://notcve.org/view.php?id=CVE-2020-12812
24 Jul 2020 — An improper authentication vulnerability in SSL VPN in FortiOS 6.4.0, 6.2.0 to 6.2.3, 6.0.9 and below may result in a user being able to log in successfully without being prompted for the second factor of authentication (FortiToken) if they changed the case of their username. Una vulnerabilidad de autenticación inapropiada en SSL VPN en FortiOS versiones 6.4.0, 6.2.0 a 6.2.3, 6.0.9 y posteriores, puede resultar en que un usuario sea capaz de iniciar sesión con éxito sin que sea requerido el segundo factor d... • https://fortiguard.com/psirt/FG-IR-19-283 • CWE-178: Improper Handling of Case Sensitivity CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-17655
https://notcve.org/view.php?id=CVE-2019-17655
16 Jun 2020 — A cleartext storage in a file or on disk (CWE-313) vulnerability in FortiOS SSL VPN 6.2.0 through 6.2.2, 6.0.9 and earlier and FortiProxy 2.0.0, 1.2.9 and earlier may allow an attacker to retrieve a logged-in SSL VPN user's credentials should that attacker be able to read the session file stored on the targeted device's system. Una vulnerabilidad de almacenamiento de texto claro en un archivo o en el disco (CWE-313) en FortiOS SSL VPN versión 6.2.0 hasta la versión 6.2.2, versión 6.0.9 y anteriores y FortiP... • https://fortiguard.com/psirt/FG-IR-19-217 • CWE-312: Cleartext Storage of Sensitive Information •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2018-13371
https://notcve.org/view.php?id=CVE-2018-13371
02 Apr 2020 — An external control of system vulnerability in FortiOS may allow an authenticated, regular user to change the routing settings of the device via connecting to the ZebOS component. Una vulnerabilidad de control externo de sistema en FortiOS, puede permitir a un usuario autenticado y regular cambiar la configuración de enrutamiento del dispositivo por medio de una conexión al componente ZebOS. • https://fortiguard.com/advisory/FG-IR-18-230 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2019-5593
https://notcve.org/view.php?id=CVE-2019-5593
23 Jan 2020 — Improper permission or value checking in the CLI console may allow a non-privileged user to obtain Fortinet FortiOS plaint text private keys of system's builtin local certificates via unsetting the keys encryption password in FortiOS 6.2.0, 6.0.0 to 6.0.6, 5.6.10 and below or for user uploaded local certificates via setting an empty password in FortiOS 6.2.1, 6.2.0, 6.0.6 and below. Una comprobación inapropiada de permisos o valores en la consola de la CLI puede permitir a un usuario no privilegiado obtener... • https://fortiguard.com/psirt/FG-IR-19-134 • CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-15705
https://notcve.org/view.php?id=CVE-2019-15705
27 Nov 2019 — An Improper Input Validation vulnerability in the SSL VPN portal of FortiOS versions 6.2.1 and below, and 6.0.6 and below may allow an unauthenticated remote attacker to crash the SSL VPN service by sending a crafted POST request. Una vulnerabilidad de Comprobación de Entrada Inapropiada en el portal VPN SSL de FortiOS versiones 6.2.1 y posteriores, y versiones 6.0.6 y posteriores, puede permitir a un atacante remoto no identificado bloquear el servicio VPN SSL enviando una petición POST especialmente diseñ... • https://fortiguard.com/advisory/FG-IR-19-236 • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 3CVE-2019-6693
https://notcve.org/view.php?id=CVE-2019-6693
21 Nov 2019 — Use of a hard-coded cryptographic key to cipher sensitive data in FortiOS configuration backup file may allow an attacker with access to the backup file to decipher the sensitive data, via knowledge of the hard-coded key. The aforementioned sensitive data includes users' passwords (except the administrator's password), private keys' passphrases and High Availability password (when set). El uso de una clave criptográfica embebida para cifrar datos confidenciales en el archivo de respaldo de configuración de ... • https://github.com/gquere/CVE-2019-6693 • CWE-798: Use of Hard-coded Credentials •
CVSS: 5.9EPSS: 0%CPEs: 3EXPL: 1CVE-2018-9195 – FortiOS 6.0.6 / FortiClientWindows 6.0.6 / FortiClientMac 6.2.1 XOR Encryption
https://notcve.org/view.php?id=CVE-2018-9195
21 Nov 2019 — Use of a hardcoded cryptographic key in the FortiGuard services communication protocol may allow a Man in the middle with knowledge of the key to eavesdrop on and modify information (URL/SPAM services in FortiOS 5.6, and URL/SPAM/AV services in FortiOS 6.0.; URL rating in FortiClient) sent and received from Fortiguard severs by decrypting these messages. Affected products include FortiClient for Windows 6.0.6 and below, FortiOS 6.0.7 and below, FortiClient for Mac OS 6.2.1 and below. El uso de una clave cri... • https://packetstorm.news/files/id/155463 • CWE-798: Use of Hard-coded Credentials •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2019-15703
https://notcve.org/view.php?id=CVE-2019-15703
24 Oct 2019 — An Insufficient Entropy in PRNG vulnerability in Fortinet FortiOS 6.2.1, 6.2.0, 6.0.8 and below for device not enable hardware TRNG token and models not support builtin TRNG seed allows attacker to theoretically recover the long term ECDSA secret in a TLS client with a RSA handshake and mutual ECDSA authentication via the help of flush+reload side channel attacks in FortiGate VM models only. Una Entropía Insuficiente en la vulnerabilidad del PRNG en Fortinet FortiOS versión 6.2.1, 6.2.0, 6.0.8 y posteriores... • https://fortiguard.com/psirt/FG-IR-19-186 • CWE-331: Insufficient Entropy •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2018-13367
https://notcve.org/view.php?id=CVE-2018-13367
23 Aug 2019 — An information exposure vulnerability in FortiOS 6.2.3, 6.2.0 and below may allow an unauthenticated attacker to gain platform information such as version, models, via parsing a JavaScript file through admin webUI. Una vulnerabilidad de exposición a la información en FortiOS 6.2.3, 6.2.0 y posteriores puede permitir que un atacante no autenticado obtenga información de la plataforma, como la versión, los modelos, mediante el análisis de un archivo JavaScript a través de admin webUI. • https://fortiguard.com/advisory/FG-IR-18-173 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5587
https://notcve.org/view.php?id=CVE-2019-5587
04 Jun 2019 — Lack of root file system integrity checking in Fortinet FortiOS VM application images all versions below 6.0.5 may allow attacker to implant malicious programs into the installing image by reassembling the image through specific methods. La ausencia de verificación de la integridad del sistema de archivos raíz en Fortinet Las imágenes de la aplicación FortiOS VM, todas las versiones inferiores a 6.0.5 pueden permitir al atacante implantar programas maliciosos en la imagen de instalación al volver a montar l... • http://www.securityfocus.com/bid/108628 • CWE-345: Insufficient Verification of Data Authenticity •