Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2018-13379

Fortinet | FortiOSAdded 2021-11-03Remediation Deadline 2022-05-03Active Ransomware Campaign

Fortinet FortiOS SSL VPN Path Traversal Vulnerability

Fortinet FortiOS SSL VPN web portal contains a path traversal vulnerability that may allow an unauthenticated attacker to download FortiOS system files through specially crafted HTTP resource requests.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-22

References