Lucene search
PRIOn knowledge basePRION:CVE-2018-13379HistoryJun 04, 2019 - 9:29 p.m.
Path traversal
2019-06-0421:29:00
PRIOn knowledge base
www.prio-n.com
12
An Improper Limitation of a Pathname to a Restricted Directory (“Path Traversal”) in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.3 to 5.6.7 and 5.4.6 to 5.4.12 and FortiProxy 2.0.0, 1.2.0 to 1.2.8, 1.1.0 to 1.1.6, 1.0.0 to 1.0.7 under SSL VPN web portal allows an unauthenticated attacker to download system files via special crafted HTTP resource requests.
Related
exploitpack
exploitpack
FortiOS 5.6.3 - 5.6.7 FortiOS 6.0.0 - 6.0.4 - Credentials Disclosure
2019-08-19 00:00:00
thn
thn
Hackers Leak VPN Account Passwords From 87,000 Fortinet FortiGate Devices
2021-09-09 07:16:00
Microsoft Blocks Iran-linked Lebanese Hackers Targeting Israeli Companies
2022-06-03 09:19:00
Iranian Hackers Targeting VMware Horizon Log4j Flaws to Deploy Ransomware
2022-02-18 07:40:00
cisa_kev
cisa_kev
Fortinet FortiOS SSL VPN Path Traversal Vulnerability
2021-11-03 00:00:00
nvd
nvd
CVE-2018-13379
2019-06-04 21:29:00
nessus
nessus
packetstorm
packetstorm
FortiOS 5.6.7 / 6.0.4 Credential Disclosure
2019-08-19 00:00:00
FortiOS 5.6.7 / 6.0.4 Credential Disclosure
2019-08-19 00:00:00
checkpoint_advisories
checkpoint_advisories
Fortinet FortiOS SSL VPN Directory Traversal (CVE-2018-13379)
2019-10-17 00:00:00
nuclei
nuclei
Fortinet FortiOS - Credentials Disclosure
2020-04-22 06:42:01
zdt
zdt
threatpost
threatpost
Hackers Exploit Fortinet Flaw in Sophisticated Cring Ransomware Attacks
2021-04-08 14:00:32
Thousands of Fortinet VPN Account Credentials Leaked
2021-09-09 22:49:27
Accenture Confirms LockBit Ransomware Attack
2021-08-11 21:56:00
mmpc
mmpc
Evolving trends in Iranian threat actor activity – MSTIC presentation at CyberWarCon 2021
2021-11-16 16:00:08
Profiling DEV-0270: PHOSPHORUS’ ransomware operations
2022-09-07 21:00:00
fortinet
fortinet
Protect
2019-05-24 00:00:00
dsquare
dsquare
Fortinet FortiGate SSL VPN File Disclosure
2019-08-17 00:00:00
kitploit
kitploit
mssecure
mssecure
Evolving trends in Iranian threat actor activity – MSTIC presentation at CyberWarCon 2021
2021-11-16 16:00:08
Profiling DEV-0270: PHOSPHORUS’ ransomware operations
2022-09-07 21:00:00
cvelist
cvelist
CVE-2018-13379
2019-06-04 20:18:08
cve
cve
CVE-2018-13379
2019-06-04 21:29:00
malwarebytes
malwarebytes
500,000 Fortinet VPN credentials exposed: Turn off, patch, reset passwords
2021-09-09 15:37:43
Patch now! NSA, CISA, and FBI warn of Russian intelligence exploiting 5 vulnerabilities
2021-04-16 14:59:38
Atomic research institute breached via VPN vulnerability
2021-06-21 13:53:03
exploitdb
exploitdb
rapid7blog
rapid7blog
CVE-2022-40684: Remote Authentication Bypass Vulnerability in Fortinet Firewalls, Web Proxies
2022-10-07 16:24:42
Metasploit Wrap-Up
2021-03-05 17:20:43
Attackers Targeting Fortinet Devices and SAP Applications
2021-04-08 17:18:07
attackerkb
attackerkb
CVE-2020-12812
2020-07-24 00:00:00
CVE-2018-13379 Path Traversal in Fortinet FortiOS
2019-06-04 00:00:00
CVE-2019-5591
2020-08-14 00:00:00
hivepro
hivepro
LockBit 2.0 Ransomware affiliates targeting Renowned Organizations
2022-03-15 10:07:18
Russian state-sponsored cyber actors targeting U.S. critical infrastructure
2022-02-18 12:20:35
Weekly Threat Digest: 14 – 20 March 2022
2022-03-23 04:17:40
cisa
cisa
FBI-CISA Joint Advisory on Exploitation of Fortinet FortiOS Vulnerabilities
2021-04-02 00:00:00
ics
ics
securelist
securelist
Cyberthreats to financial organizations in 2022
2021-11-23 10:00:13
talosblog
talosblog
qualysblog
qualysblog