Bleeping Computer catched the following tweet from a security expert with the alias Bank_Security attracted attention.Įxploit warning about vulnerable Fortinet VPNs Hacker posts IP list auf exploitable VPNsĪlthough the vulnerability may have been patched long ago, many Fortinet VPN accesses still seem to be running vulnerable FortiOS versions. They exploit various vulnerabilities, including Fortinet (CVE-2018-13379) – see also this English tweet. 2020) that Iranian hackers leave backdoors in VPN servers. But in February 2020 I reported in the German blog post Sicherheitssplitter (21. So the vulnerability could have been patched long ago.
At the beginning of May 2019 Fortinet published this PSIRT Advisory and released updates for the affected FortOS versions. PacketStorm-Security has written something about it here.
#Fortinet vpn vulnerability 2020 download
It allows an unauthenticated attacker to download system files via specially crafted HTTP resource requests through the SSL VPN web portal. The ("Path Traversal" vulnerability occurs due to improper restriction of a pathname to a directory in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.3 to 5.6.7, and 5.4.6 to 5.4.12. The exploits target the path traversal vulnerability CVE-2018-13379, which has an NVD score of 9.8 (out of 10). Unpatched Fortinet VPN devices are vulnerable to single-line exploits via a vulnerability that has been in place since 2018.
0 kommentar(er)
