Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2018-13382

Fortinet | FortiOS and FortiProxyAdded 2022-01-10Remediation Deadline 2022-07-10Active Ransomware Campaign

Fortinet FortiOS and FortiProxy Improper Authorization

An Improper Authorization vulnerability in Fortinet FortiOS and FortiProxy under SSL VPN web portal allows an unauthenticated attacker to modify the password.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-285

References