CVE-2018-13379

CWE-22 — Path Traversal18 documents14 sources

9.1

CVSS

CRITICAL

EPSS94.5%(100th)

CISA KEVPublic ExploitExploited in WildRansomware Use

CISA Required Action: Apply updates per vendor instructions.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:HExploitability: 3.9 | Impact: 5.2

Affected Packages2 packages

▶NVDfortinet/fortios5.4.6 — 5.4.13+2

▶NVDfortinet/fortiproxy< 1.2.9+1

An Improper Limitation of a Pathname to a Restricted Directory ("Path Traversal") in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.3 to 5.6.7 and 5.4.6 to 5.4.12 and FortiProxy 2.0.0, 1.2.0 to 1.2.8, 1.1.0 to 1.1.6, 1.0.0 to 1.0.7 under SSL VPN web portal allows an unauthenticated attacker to download system files via special crafted HTTP resource requests.

NVD ↗MITRE ↗

🔴Vulnerability Details

GHSA

GHSA-2q79-m25p-r2q3: An Improper Limitation of a Pathname to a Restricted Directory ("Path Traversal") in Fortinet FortiOS 6↗2022-05-24

▶

CVEList

CVE-2018-13379: An Improper Limitation of a Pathname to a Restricted Directory ("Path Traversal") in Fortinet FortiOS 6↗2019-06-04

▶

VulnCheck

Fortinet FortiOS SSL VPN Path Traversal Vulnerability↗2018

▶

💥Exploits & PoCs

Exploit-DB

Fortinet FortiOS 5.6.3 - 5.6.7 / FortiOS 6.0.0 - 6.0.4 - Credentials Disclosure (Metasploit)↗2019-08-19

▶

Exploit-DB

Fortinet FortiOS 5.6.3 - 5.6.7 / FortiOS 6.0.0 - 6.0.4 - Credentials Disclosure↗2019-08-19

▶

Nuclei

Fortinet FortiOS - Credentials Disclosure

▶

🔍Detection Rules

Suricata

ET EXPLOIT Fortinet FortiOS/FortiProxy SSL VPN Web Portal Path Traversal (CVE-2018-13379)↗2021-09-22

▶

Suricata

ET EXPLOIT FortiOS SSL VPN - Information Disclosure (CVE-2018-13379)↗2019-08-14

▶

📋Vendor Advisories

CISA

Fortinet FortiOS SSL VPN Path Traversal Vulnerability↗2021-11-03

▶

Fortinet

An Improper Limitation of a Pathname to a Restricted Directory ("Path Traversal") in Fortinet FortiOS 6.0.0 to 6.0.4, 5...↗2019-06-04

▶

🕵️Threat Intelligence

Unit42

Ransomware Review: First Half of 2024↗2024-08-09

▶

Fortinet

Malicious Actor Discloses FortiGate SSL-VPN Credentials↗2021-09-08

▶

Bhis

Talkin’ About Infosec News – 4/12/2021 - Black Hills Information Security, Inc.↗2021-04-14

▶

Fortinet

Update Regarding CVE-2018-13379 | Fortinet↗2020-11-30

▶

Fortinet

FortiOS and SSL Vulnerabilities↗2019-08-28

▶