CVE-2020-12818Fortinet Fortios vulnerability

4 documents4 sources
Severity
5.3MEDIUMNVD
EPSS
0.3%
top 48.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Fortinet FortiosFortinet Fortios
Timeline
PublishedSep 24
Latest updateMay 24

Description

An insufficient logging vulnerability in FortiGate before 6.4.1 may allow the traffic from an unauthenticated attacker to Fortinet owned IP addresses to go unnoticed.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

NVDfortinet/fortios< 6.4.1
CVEListV5fortinet/fortinet_fortiosFortiOS before 6.4.1

🔴Vulnerability Details

2
GHSA
GHSA-h946-qqgh-qhrr: An insufficient logging vulnerability in FortiGate before 62022-05-24
CVEList
CVE-2020-12818: An insufficient logging vulnerability in FortiGate before 62020-09-24

📋Vendor Advisories

1
Fortinet
An insufficient logging vulnerability in FortiGate before 6.4.1 may allow the traffic from an unauthenticated attacker t...2020-09-24
CVE-2020-12818 — Fortinet Fortios vulnerability | cvebase