美國政府警告Fortinet軟體漏洞恐遭國家駭客開採
影響版本:
CVE-2018-13379
Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.3 to 5.6.7 and 5.4.6 to 5.4.12
CVE-2020-12812
FortiOS 6.4.0, 6.2.0 to 6.2.3, 6.0.9
FBI及CISA發現有國家支持的駭客組織,正在針對尚未修補F
國家駭客威脅不斷,繼SolarWinds、微軟Exchang
美國聯邦調查局(FBI)及網路安全暨基礎架構安全管理署(CI
三項漏洞之中,CVE-2018-13379允許駭客解讀系統檔
傳統上,APT駭客攻擊已知重大漏洞,
在FortiOS的攻擊中,FBI及CISA相信APT攻擊者可
去年11月安全廠商在駭客論壇上發現,有人兜售約5萬個含有CV
FBI和CISA呼籲政府及民間組織應儘速修補這三項漏洞。
其他建議措施則旨在防止資料被刪改,系統被非法存取或安裝軟體,
CVE-2018-13379
An Improper Limitation of a Pathname to a Restricted Directory (“Path Traversal") in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.3 to 5.6.7 and 5.4.6 to 5.4.12 under SSL VPN web portal allows an unauthenticated attacker to download system files via special crafted HTTP resource requests.
CVE-2020-12812
An improper authentication vulnerability in SSL VPN in FortiOS 6.4.0, 6.2.0 to 6.2.3, 6.0.9 and below may result in a user being able to log in successfully without being prompted for the second factor of authentication (FortiToken) if they changed the case of their username.