CVSS: 6.5EPSS: 28%CPEs: 3EXPL: 3CVE-2019-6693
https://notcve.org/view.php?id=CVE-2019-6693
21 Nov 2019 — Use of a hard-coded cryptographic key to cipher sensitive data in FortiOS configuration backup file may allow an attacker with access to the backup file to decipher the sensitive data, via knowledge of the hard-coded key. The aforementioned sensitive data includes users' passwords (except the administrator's password), private keys' passphrases and High Availability password (when set). El uso de una clave criptográfica embebida para cifrar datos confidenciales en el archivo de respaldo de configuración de ... • https://github.com/gquere/CVE-2019-6693 • CWE-798: Use of Hard-coded Credentials •
CVSS: 5.9EPSS: 0%CPEs: 3EXPL: 1CVE-2018-9195 – FortiOS 6.0.6 / FortiClientWindows 6.0.6 / FortiClientMac 6.2.1 XOR Encryption
https://notcve.org/view.php?id=CVE-2018-9195
21 Nov 2019 — Use of a hardcoded cryptographic key in the FortiGuard services communication protocol may allow a Man in the middle with knowledge of the key to eavesdrop on and modify information (URL/SPAM services in FortiOS 5.6, and URL/SPAM/AV services in FortiOS 6.0.; URL rating in FortiClient) sent and received from Fortiguard severs by decrypting these messages. Affected products include FortiClient for Windows 6.0.6 and below, FortiOS 6.0.7 and below, FortiClient for Mac OS 6.2.1 and below. El uso de una clave cri... • https://packetstorm.news/files/id/155463 • CWE-798: Use of Hard-coded Credentials •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2019-15703
https://notcve.org/view.php?id=CVE-2019-15703
24 Oct 2019 — An Insufficient Entropy in PRNG vulnerability in Fortinet FortiOS 6.2.1, 6.2.0, 6.0.8 and below for device not enable hardware TRNG token and models not support builtin TRNG seed allows attacker to theoretically recover the long term ECDSA secret in a TLS client with a RSA handshake and mutual ECDSA authentication via the help of flush+reload side channel attacks in FortiGate VM models only. Una Entropía Insuficiente en la vulnerabilidad del PRNG en Fortinet FortiOS versión 6.2.1, 6.2.0, 6.0.8 y posteriores... • https://fortiguard.com/psirt/FG-IR-19-186 • CWE-331: Insufficient Entropy •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2018-13367
https://notcve.org/view.php?id=CVE-2018-13367
23 Aug 2019 — An information exposure vulnerability in FortiOS 6.2.3, 6.2.0 and below may allow an unauthenticated attacker to gain platform information such as version, models, via parsing a JavaScript file through admin webUI. Una vulnerabilidad de exposición a la información en FortiOS 6.2.3, 6.2.0 y posteriores puede permitir que un atacante no autenticado obtenga información de la plataforma, como la versión, los modelos, mediante el análisis de un archivo JavaScript a través de admin webUI. • https://fortiguard.com/advisory/FG-IR-18-173 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5587
https://notcve.org/view.php?id=CVE-2019-5587
04 Jun 2019 — Lack of root file system integrity checking in Fortinet FortiOS VM application images all versions below 6.0.5 may allow attacker to implant malicious programs into the installing image by reassembling the image through specific methods. La ausencia de verificación de la integridad del sistema de archivos raíz en Fortinet Las imágenes de la aplicación FortiOS VM, todas las versiones inferiores a 6.0.5 pueden permitir al atacante implantar programas maliciosos en la imagen de instalación al volver a montar l... • http://www.securityfocus.com/bid/108628 • CWE-345: Insufficient Verification of Data Authenticity •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2018-13384
https://notcve.org/view.php?id=CVE-2018-13384
04 Jun 2019 — A Host Header Redirection vulnerability in Fortinet FortiOS all versions below 6.0.5 under SSL VPN web portal allows a remote attacker to potentially poison HTTP cache and subsequently redirect SSL VPN web portal users to arbitrary web domains. Una vulnerabilidad del Host Header Redirection en Fortinet FortiOS, en todas las versiones anteriores a la 6.0.5 en el portal web SSL VPN permite a un atacante remoto que envenene la memoria caché HTTP y, posteriormente, redirija en consecuencia a los usuarios del po... • https://fortiguard.com/advisory/FG-IR-19-002 • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2018-13381
https://notcve.org/view.php?id=CVE-2018-13381
04 Jun 2019 — A buffer overflow vulnerability in Fortinet FortiOS 6.0.0 through 6.0.4, 5.6.0 through 5.6.7, 5.4 and earlier versions and FortiProxy 2.0.0, 1.2.8 and earlier versions under SSL VPN web portal allows a non-authenticated attacker to perform a Denial-of-service attack via special craft message payloads. Una vulnerabilidad de desbordamiento de búfer en Fortinet FortiOS versión 6.0.0 hasta la 6.0.4, versión 5.6.0 hasta la5.6.7, versión 5.4 y anteriores y FortiProxy versión 2.0.0, versión 1.2.8 y anteriores en e... • https://fortiguard.com/advisory/FG-IR-18-387 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.1EPSS: 34%CPEs: 6EXPL: 0CVE-2018-13380
https://notcve.org/view.php?id=CVE-2018-13380
04 Jun 2019 — A Cross-site Scripting (XSS) vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.7, 5.4.0 to 5.4.12, 5.2 and below and Fortinet FortiProxy 2.0.0, 1.2.8 and below under SSL VPN web portal allows attacker to execute unauthorized malicious script code via the error or message handling parameters. Una vulnerabilidad de Cross-site Scripting (XSS) en Fortinet FortiOS 6.0.0 a 6.0.4, 5.6.0 a 5.6.7, 5.4.0 a 5.4.12, 5.2 y posteriores y Fortinet FortiProxy versiones 2.0.0, 1.2.8 y versiones posteriores en e... • https://fortiguard.com/advisory/FG-IR-18-383 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2018-13365
https://notcve.org/view.php?id=CVE-2018-13365
29 May 2019 — An Information Exposure vulnerability in Fortinet FortiOS 6.0.1, 5.6.5 and below, allow attackers to learn private IP as well as the hostname of FortiGate via Application Control Block page. Una vulnerabilidad de exposición a la información en Fortinet FortiOS versiones 6.0.1, 5.6.5 y posteriores, permite a los atacantes conocer la IP privada, además de el nombre de host de FortiGate por medio de la página bloqueo de control de aplicaciones (Application Control Block) . • https://fortiguard.com/advisory/FG-IR-18-085 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 1%CPEs: 6EXPL: 0CVE-2018-13383 – Fortinet FortiOS and FortiProxy Out-of-bounds Write
https://notcve.org/view.php?id=CVE-2018-13383
29 May 2019 — A heap buffer overflow in Fortinet FortiOS 6.0.0 through 6.0.4, 5.6.0 through 5.6.10, 5.4.0 through 5.4.12, 5.2.14 and earlier and FortiProxy 2.0.0, 1.2.8 and earlier in the SSL VPN web portal may cause the SSL VPN web service termination for logged in users due to a failure to properly handle javascript href data when proxying webpages. Un desbordamiento del búfer de la pila en Fortinet FortiOS versión 6.0.0 hasta 6.0.4, versión 5.6.0 hasta 5.6.10, versión 5.4.0 hasta 5.4.12, versión 5.2.14 y anteriores y ... • https://fortiguard.com/advisory/FG-IR-18-388 • CWE-787: Out-of-bounds Write •