CVE-2018-13383

Published May 29, 2019

Last updated a month ago

Exploit known CVSS medium 6.5

Overview

Description: A heap buffer overflow in Fortinet FortiOS 6.0.0 through 6.0.4, 5.6.0 through 5.6.10, 5.4.0 through 5.4.12, 5.2.14 and earlier and FortiProxy 2.0.0, 1.2.8 and earlier in the SSL VPN web portal may cause the SSL VPN web service termination for logged in users due to a failure to properly handle javascript href data when proxying webpages.
Source: psirt@fortinet.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 6.5
Impact score: 3.6
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:P

Known exploits

Data from CISA

Vulnerability name: Fortinet FortiOS and FortiProxy Out-of-bounds Write
Exploit added on: Jan 10, 2022
Exploit action due: Jul 10, 2022
Required action: Apply updates per vendor instructions.

Weaknesses

nvd@nist.gov: CWE-787
134c704f-9b21-4f2e-91b3-4a467353bcc0: CWE-787

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:fortinet:fortiproxy:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B47708E-8A92-4767-8685-49C3143D0920",
            "versionEndExcluding": "1.2.9"
          },
          {
            "criteria": "cpe:2.3:a:fortinet:fortiproxy:2.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F3DD97EA-92AD-4EB1-B731-261F40BFC4BB"
          },
          {
            "criteria": "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5CC2097E-BA3D-4596-B4E4-5FB0DDCAE2FE",
            "versionEndExcluding": "5.2.15",
            "versionStartIncluding": "5.2.0"
          },
          {
            "criteria": "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B07B6E15-30AE-44E6-8009-A30FD3E5CCD3",
            "versionEndExcluding": "5.4.13",
            "versionStartIncluding": "5.4.0"
          },
          {
            "criteria": "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9093BE81-687C-4CCB-834A-BE49CEE367C5",
            "versionEndExcluding": "5.6.11",
            "versionStartIncluding": "5.6.0"
          },
          {
            "criteria": "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D37F1481-E7A7-4428-89C9-5DF9D206D056",
            "versionEndExcluding": "6.0.5",
            "versionStartIncluding": "6.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Known exploits

Weaknesses

Social media

Configurations

References