CVE-2018-13381Improper Restriction of Operations within the Bounds of a Memory Buffer in Fortinet Fortios

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer8 documents6 sources
Severity
7.5HIGHNVD
CNA5.3
EPSS
0.5%
top 32.57%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Fortinet FortiosFortinet FortiproxyFortinet Fortios AND Fortiproxy
Timeline
PublishedJun 4
Latest updateMay 24

Description

A buffer overflow vulnerability in Fortinet FortiOS 6.0.0 through 6.0.4, 5.6.0 through 5.6.7, 5.4 and earlier versions and FortiProxy 2.0.0, 1.2.8 and earlier versions under SSL VPN web portal allows a non-authenticated attacker to perform a Denial-of-service attack via special craft message payloads.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

CVEListV5fortinet/fortinet_fortios_and_fortiproxyFortiOS 6.0.0 through 6.0.4, 5.6.0 through 5.6.7, 5.4 and earlier and FortiProxy 2.0.0, 1.2.8 and earlier.
NVDfortinet/fortios5.4.05.4.12+3
NVDfortinet/fortiproxy1.2.8+1

🔴Vulnerability Details

2
GHSA
GHSA-rmh4-cjjf-7237: A buffer overflow vulnerability in Fortinet FortiOS 62022-05-24
CVEList
CVE-2018-13381: A buffer overflow vulnerability in Fortinet FortiOS 62019-06-04

💥Exploits & PoCs

2
Exploit-DB
Trivum Multiroom Setup Tool 8.76 - Corss-Site Request Forgery (Admin Bypass)2018-07-26
Exploit-DB
Touchpad / Trivum WebTouch Setup 2.53 build 13163 - Authentication Bypass2018-07-20

🔍Detection Rules

1
Suricata
ET EXPLOIT FortiOS SSL VPN - Pre-Auth Messages Payload Buffer Overflow (CVE-2018-13381)2019-08-14

📋Vendor Advisories

2
Fortinet
A buffer overflow vulnerability in Fortinet FortiOS 6.0.0 through 6.0.4, 5.6.0 through 5.6.7, 5.4 and earlier versions a...2019-06-04
Fortinet
A buffer overflow vulnerability in Fortinet FortiOS 6.0.0 through 6.0.4, 5.6.0 through 5.6.7, 5.4 and earlier versions a...2019-06-04
CVE-2018-13381 — Fortinet Fortios vulnerability | cvebase