Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2020-9294 — Improper Authentication in Fortinet Fortimail

CWE-287 — Improper Authentication5 documents5 sources

Severity

9.8CRITICALNVD

EPSS

80.1%

top 0.89%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Fortinet Fortimail Fortinet Fortivoice Fortinet Fortivoiceenterprise

Timeline

PublishedApr 27

Latest updateMay 24

Description

An improper authentication vulnerability in FortiMail 5.4.10, 6.0.7, 6.2.2 and earlier and FortiVoiceEntreprise 6.0.0 and 6.0.1 may allow a remote unauthenticated attacker to access the system as a legitimate user by requesting a password change via the user interface.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages4 packages

▶NVDfortinet/fortimail6.0.0 — 6.0.7+2

▶CVEListV5fortinet/fortimail5.4.10, 6.0.7, 6.2.2 and earlier+2

▶NVDfortinet/fortivoice6.0.0 — 6.0.1

▶CVEListV5fortinet/fortivoiceenterprise6.0.0, 6.0.1+1

🔴Vulnerability Details

GHSA

GHSA-cg58-vw2q-jv22: An improper authentication vulnerability in FortiMail 5↗2022-05-24

▶

CVEList

CVE-2020-9294: An improper authentication vulnerability in FortiMail 5↗2020-04-27

▶

💥Exploits & PoCs

Metasploit

FortiMail Unauthenticated Login Bypass Scanner↗

▶

📋Vendor Advisories

Fortinet

An improper authentication vulnerability in FortiMail 5.4.10, 6.0.7, 6.2.2 and earlier and FortiVoiceEntreprise 6.0.0 an...↗2020-04-27

▶