CVE-2018-13379

2019-06-04T21:29:00
ID CVE-2018-13379
Type cve
Reporter cve@mitre.org
Modified 2020-11-19T13:15:00

Description

An Improper Limitation of a Pathname to a Restricted Directory ("Path Traversal") in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.3 to 5.6.7 and 5.4.6 to 5.4.12 under SSL VPN web portal allows an unauthenticated attacker to download system files via special crafted HTTP resource requests.