CVE Vulnerabilities

CVE-2018-13376

Published: Nov 27, 2018 | Modified: Oct 03, 2019
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

An uninitialized memory buffer leak exists in Fortinet FortiOS 5.6.1 to 5.6.3, 5.4.6 to 5.4.7, 5.2 all versions under web proxys disclaimer response web pages, potentially causing sensitive data to be displayed in the HTTP response.

Affected Software

Name Vendor Start Version End Version
Fortios Fortinet * 5.2.12
Fortios Fortinet 5.4.6 5.4.7
Fortios Fortinet 5.6.1 5.6.3

References