⚠ Actively exploited in ransomware campaigns
This vulnerability is on the CISA Known Exploited Vulnerabilities list and has been used in known ransomware attacks. CISA required action: Apply updates per vendor instructions.. Due date: 2022-09-29.

CVE-2018-13374Incorrect Permission Assignment in Fortinet Fortiadc

CWE-732Incorrect Permission Assignment8 documents8 sources
Severity
4.3MEDIUMNVD
EPSS
3.8%
top 11.93%
CISA KEV
KEVRansomware
Added 2022-09-08
Due 2022-09-29
Exploit
Exploited in wild
Active exploitation observed
Affected products
2
Fortinet FortiadcFortinet Fortios
Timeline
PublishedJan 22
KEV addedSep 8
KEV dueSep 29
CISA Required Action: Apply updates per vendor instructions.

Description

A Improper Access Control in Fortinet FortiOS 6.0.2, 5.6.7 and before, FortiADC 6.1.0, 6.0.0 to 6.0.1, 5.4.0 to 5.4.4 allows attacker to obtain the LDAP server login credentials configured in FortiGate via pointing a LDAP server connectivity test request to a rogue LDAP server instead of the configured one.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

NVDfortinet/fortios< 6.0.3
NVDfortinet/fortiadc5.4.05.4.5+2

🔴Vulnerability Details

3
GHSA
GHSA-rpmq-q4mw-pc44: A Improper Access Control in Fortinet FortiOS 62022-05-13
CVEList
CVE-2018-13374: A Improper Access Control in Fortinet FortiOS 62019-01-22
VulnCheck
Fortinet FortiOS and FortiADC Improper Access Control Vulnerability2018

💥Exploits & PoCs

1
Exploit-DB
Fortinet FortiGate FortiOS < 6.0.3 - LDAP Credential Disclosure2019-01-16

📋Vendor Advisories

2
CISA
Fortinet FortiOS and FortiADC Improper Access Control Vulnerability2022-09-08
Fortinet
A Improper Access Control in Fortinet FortiOS 6.0.2, 5.6.7 and before, FortiADC 6.1.0, 6.0.0 to 6.0.1, 5.4.0 to 5.4.4 al...2019-01-22

💬Community

1
Bugzilla
CVE-2018-1140 libldb: LDAP server crash via distinguishedName2018-05-21
CVE-2018-13374 — Incorrect Permission Assignment | cvebase