Lucene search
FortiGuard LabsFG-IR-18-384HistoryMay 24, 2019 - 12:00 a.m.
Protect
2019-05-2400:00:00
FortiGuard Labs
www.fortiguard.com
95
0.973 High
EPSS
Percentile
99.9%
A path traversal vulnerability in the FortiOS SSL VPN web portal may allow an unauthenticated attacker to download FortiOS system files through specially crafted HTTP resource requests.
Related
exploitpack
exploitpack
FortiOS 5.6.3 - 5.6.7 FortiOS 6.0.0 - 6.0.4 - Credentials Disclosure (Metasploit)
2019-08-19 00:00:00
FortiOS 5.6.3 - 5.6.7 FortiOS 6.0.0 - 6.0.4 - Credentials Disclosure
2019-08-19 00:00:00
mmpc
mmpc
Evolving trends in Iranian threat actor activity – MSTIC presentation at CyberWarCon 2021
2021-11-16 16:00:08
Profiling DEV-0270: PHOSPHORUS’ ransomware operations
2022-09-07 21:00:00
threatpost
threatpost
Thousands of Fortinet VPN Account Credentials Leaked
2021-09-09 22:49:27
Hackers Exploit Fortinet Flaw in Sophisticated Cring Ransomware Attacks
2021-04-08 14:00:32
Accenture Confirms LockBit Ransomware Attack
2021-08-11 21:56:00
prion
prion
Path traversal
2019-06-04 21:29:00
thn
thn
CISA Urges Manufacturers Eliminate Default Passwords to Thwart Cyber Threats
2023-12-18 05:41:00
Hackers Leak VPN Account Passwords From 87,000 Fortinet FortiGate Devices
2021-09-09 07:16:00
Microsoft Blocks Iran-linked Lebanese Hackers Targeting Israeli Companies
2022-06-03 09:19:00
zdt
zdt
packetstorm
packetstorm
FortiOS 5.6.7 / 6.0.4 Credential Disclosure
2019-08-19 00:00:00
FortiOS 5.6.7 / 6.0.4 Credential Disclosure
2019-08-19 00:00:00
cisa_kev
cisa_kev
Fortinet FortiOS SSL VPN Path Traversal Vulnerability
2021-11-03 00:00:00
nvd
nvd
CVE-2018-13379
2019-06-04 21:29:00
checkpoint_advisories
checkpoint_advisories
Fortinet FortiOS SSL VPN Directory Traversal (CVE-2018-13379)
2019-10-17 00:00:00
nuclei
nuclei
Fortinet FortiOS - Credentials Disclosure
2020-04-22 06:42:01
nessus
nessus
fortinet
fortinet
cvelist
cvelist
CVE-2018-13379
2019-06-04 20:18:08
mssecure
mssecure
Evolving trends in Iranian threat actor activity – MSTIC presentation at CyberWarCon 2021
2021-11-16 16:00:08
Profiling DEV-0270: PHOSPHORUS’ ransomware operations
2022-09-07 21:00:00
kitploit
kitploit
dsquare
dsquare
Fortinet FortiGate SSL VPN File Disclosure
2019-08-17 00:00:00
malwarebytes
malwarebytes
500,000 Fortinet VPN credentials exposed: Turn off, patch, reset passwords
2021-09-09 15:37:43
Atomic research institute breached via VPN vulnerability
2021-06-21 13:53:03
cve
cve
CVE-2018-13379
2019-06-04 21:29:00
exploitdb
exploitdb
attackerkb
attackerkb
CVE-2020-12812
2020-07-24 00:00:00
CVE-2018-13379 Path Traversal in Fortinet FortiOS
2019-06-04 00:00:00
CVE-2019-5591
2020-08-14 00:00:00
rapid7blog
rapid7blog
CVE-2022-40684: Remote Authentication Bypass Vulnerability in Fortinet Firewalls, Web Proxies
2022-10-07 16:24:42
Metasploit Wrap-Up
2021-03-05 17:20:43
Attackers Targeting Fortinet Devices and SAP Applications
2021-04-08 17:18:07
hivepro
hivepro
LockBit 2.0 Ransomware affiliates targeting Renowned Organizations
2022-03-15 10:07:18
Russian state-sponsored cyber actors targeting U.S. critical infrastructure
2022-02-18 12:20:35
Weekly Threat Digest: 14 – 20 March 2022
2022-03-23 04:17:40
cisa
cisa
FBI-CISA Joint Advisory on Exploitation of Fortinet FortiOS Vulnerabilities
2021-04-02 00:00:00
ics
ics
securelist
securelist
Cyberthreats to financial organizations in 2022
2021-11-23 10:00:13
qualysblog
qualysblog
Qualys Tackles 2022’s Top Routinely Exploited Cyber Vulnerabilities
2023-08-24 19:07:05
CISA Alert: Top 15 Routinely Exploited Vulnerabilities
2022-05-06 12:19:24
Solorigate/Sunburst : Theft of Cybersecurity Tools | FireEye Breach
2020-12-10 00:48:29
talosblog
talosblog