An information exposure vulnerability in FortiOS 6.2.3, 6.2.0 and below may allow an unauthenticated attacker to gain platform information such as version, models, via parsing a JavaScript file through admin webUI.
References
Link | Resource |
---|---|
https://fortiguard.com/advisory/FG-IR-18-173 | Vendor Advisory |
https://fortiguard.com/advisory/FG-IR-18-173 | Vendor Advisory |
Configurations
History
21 Nov 2024, 03:46
Type | Values Removed | Values Added |
---|---|---|
References | () https://fortiguard.com/advisory/FG-IR-18-173 - Vendor Advisory |
Information
Published : 2019-08-23 21:15
Updated : 2024-11-21 03:46
NVD link : CVE-2018-13367
Mitre link : CVE-2018-13367
CVE.ORG link : CVE-2018-13367
JSON object : View
Products Affected
fortinet
- fortios
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor