CVE-2016-3978

FortiOS Web UI (Fortinet) is affected by CVE-2016-3978. Affects FortiOS WebUI in 5.0.x prior to 5.0.13, 5.2.x prior to 5.2.3, and 5.4.x prior to 5.4.0. The flaw allows remote attackers to redirect users to arbitrary sites via the redirect parameter to login, enabling phishing or cross-site script...

CVE-2016-3978

The Web User Interface WebUI in FortiOS 5.0.x before 5.0.13, 5.2.x before 5.2.3, and 5.4.x before 5.4.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or cross-site scripting XSS attacks via the "redirect" parameter to "login."...

Fortinet FortiOS Multiple Vulnerabilities (FG-IR-16-003)

Fortinet FortiOS is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fortinet FortiOS Redirect Parameter Multiple Vulnerabilities

The remote host is running a version of Fortinet FortiOS that is affected by the following vulnerabilities : - An open redirect vulnerability exists due to improper validation of user-supplied input before using it in redirects. An attacker can exploit this, via a specially crafted link, to...

Fortinet FortiOS Open Redirect / Cross Site Scripting

Description =================================================================== The FortiOS webui accepts a user-controlled input that specifies a link to an external site, and uses that link in a redirect. The redirect input parameter is also prone to a cross site scripting. Public Fortinet...

FortiOS open redirect vulnerability

...

Fortinet FortiOS 5.2.x < 5.2.6 ICMP Redirect Response DoS

The remote host is running a version of Fortinet FortiOS that is 5.2.x prior to 5.2.6. It is, therefore, affected by a denial of service vulnerability due to the processing of ICMP redirect packets before a session has been created. A remote attacker can exploit this to cause a kernel panic,...

Fortinet FortiOS 5.2.x < 5.2.3 Multiple XSS

The remote FortiGate device is running a version of FortiOS that is 5.2.x prior to 5.2.3. It is, therefore, affected by multiple cross-site scripting vulnerabilities : - Multiple cross-site scripting vulnerabilities exists due to improper validation of user-supplied input to the user group and vp...

The vulnerability of the FortiOS operating system, the FortiAnalyzer network interface controller, and the micro-programming software of the FortiSwitch devices allow a perpetrator to gain access to protected information.

The vulnerabilities of the FortiOS operating system, the FortiAnalyzer network interface controller, and the FortiSwitch micro-programming software are related to deficiencies in access control. Exploiting these vulnerabilities can allow a malicious actor, operating remotely, to gain access to...

FortiOS Fortimanager_Access SSH account backdoor

Added: 01/25/2016 CVE: CVE-2016-1909 Background FortiOS is the operating system used by FortiGate network security appliances. Problem An undocumented account can be used to gain unauthorized access to the appliance. Resolution Upgrade to FortiOS 4.1.11, 4.2.16, 4.3.17, 5.0.8, 5.2.0, 5.4.0, or...

FortiOS Fortimanager_Access SSH account backdoor

Added: 01/25/2016 CVE: CVE-2016-1909 Background FortiOS is the operating system used by FortiGate network security appliances. Problem An undocumented account can be used to gain unauthorized access to the appliance. Resolution Upgrade to FortiOS 4.1.11, 4.2.16, 4.3.17, 5.0.8, 5.2.0, 5.4.0, or...

FortiOS Fortimanager_Access SSH account backdoor

Added: 01/25/2016 CVE: CVE-2016-1909 Background FortiOS is the operating system used by FortiGate network security appliances. Problem An undocumented account can be used to gain unauthorized access to the appliance. Resolution Upgrade to FortiOS 4.1.11, 4.2.16, 4.3.17, 5.0.8, 5.2.0, 5.4.0, or...

FortiOS Fortimanager_Access SSH account backdoor

Added: 01/25/2016 CVE: CVE-2016-1909 Background FortiOS is the operating system used by FortiGate network security appliances. Problem An undocumented account can be used to gain unauthorized access to the appliance. Resolution Upgrade to FortiOS 4.1.11, 4.2.16, 4.3.17, 5.0.8, 5.2.0, 5.4.0, or...

Fortinet FortiOS Information Disclosure Vulnerability (CNVD-2016-00441)

Fortinet FortiOS is a dedicated security operating system on the FortiGate network security platform. Fortinet FortiOS has a FortimanagerAccess account that uses hard-coded passwords, allowing a remote attacker to gain administrator access via an SSH session with the help of this account...

CVE-2016-1909

Fortinet FortiAnalyzer before 5.0.12 and 5.2.x before 5.2.5; FortiSwitch 3.3.x before 3.3.3; FortiCache 3.0.x before 3.0.8; and FortiOS 4.1.x before 4.1.11, 4.2.x before 4.2.16, 4.3.x before 4.3.17 and 5.0.x before 5.0.8 have a hardcoded passphrase for the FortimanagerAccess account, which allows...

Hardcoded credentials

Fortinet FortiAnalyzer before 5.0.12 and 5.2.x before 5.2.5; FortiSwitch 3.3.x before 3.3.3; FortiCache 3.0.x before 3.0.8; and FortiOS 4.1.x before 4.1.11, 4.2.x before 4.2.16, 4.3.x before 4.3.17 and 5.0.x before 5.0.8 have a hardcoded passphrase for the FortimanagerAccess account, which allows...

PT-2016-1104

Name of the Vulnerable Software and Affected Versions FortiAnalyzer versions 5.0.0 through 5.0.11 FortiAnalyzer versions 5.2.x prior to 5.2.5 FortiSwitch versions 3.3.x prior to 3.3.3 FortiCache versions 3.0.x prior to 3.0.8 FortiOS versions 4.1.x prior to 4.1.11 FortiOS versions 4.2.x prior to...

Fortinet FortiOS SSH Undocumented Interactive Login Vulnerability (FG-IR-16-001) - Version Check

An undocumented account used for communication with authorized FortiManager devices exists on some versions of FortiOS. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Fortinet FortiOS SSH Undocumented Interactive Login Vulnerability

The SSH server running on the remote host can be logged into using default SSH credentials. The 'FortimanagerAccess' account has a password based on the string 'FGTAbc11xy+Qqz27' and a calculated hash that is publicly known. A remote attacker can exploit this to gain administrative access to the...

Someone Just Leaked Hard-Coded Password Backdoor for Fortinet Firewalls

Are millions of enterprise users, who rely on the next-generation firewalls for protection, actually protected from hackers? Probably Not. Just less than a month after an unauthorized backdoor found in Juniper Networks firewalls, an anonymous security researcher has discovered highly suspicious...