CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-13374

A Improper Access Control in Fortinet FortiOS 6.0.2, 5.6.7 and before, FortiADC 6.1.0, 6.0.0 to 6.0.1, 5.4.0 to 5.4.4 allows attacker to obtain the LDAP server login credentials configured in FortiGate via pointing a LDAP server connectivity test request to a rogue LDAP server instead of the configured one.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.027

EPSS Ranking 85.3%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 4.0

Proposed Action

Fortinet FortiOS and FortiADC contain an improper access control vulnerability that allows attackers to obtain the LDAP server login credentials configured in FortiGate by pointing a LDAP server connectivity test request to a rogue LDAP server.

Ransomware Campaign

Known

References

Products affected by CVE-2018-13374

Fortinet » Fortiadc » Version: 5.4.0

cpe:2.3:a:fortinet:fortiadc:5.4.0
Fortinet » Fortiadc » Version: 5.4.1

cpe:2.3:a:fortinet:fortiadc:5.4.1
Fortinet » Fortiadc » Version: 5.4.2

cpe:2.3:a:fortinet:fortiadc:5.4.2
Fortinet » Fortiadc » Version: 5.4.3

cpe:2.3:a:fortinet:fortiadc:5.4.3
Fortinet » Fortiadc » Version: 5.4.4

cpe:2.3:a:fortinet:fortiadc:5.4.4
Fortinet » Fortiadc » Version: 6.0.0

cpe:2.3:a:fortinet:fortiadc:6.0.0
Fortinet » Fortiadc » Version: 6.0.1

cpe:2.3:a:fortinet:fortiadc:6.0.1
Fortinet » Fortiadc » Version: 6.1.0

cpe:2.3:a:fortinet:fortiadc:6.1.0
Fortinet » Fortios » Version: 3.1.0

cpe:2.3:o:fortinet:fortios:3.1.0
Fortinet » Fortios » Version: 3.2.0

cpe:2.3:o:fortinet:fortios:3.2.0
Fortinet » Fortios » Version: 3.3.0

cpe:2.3:o:fortinet:fortios:3.3.0
Fortinet » Fortios » Version: 3.3.10

cpe:2.3:o:fortinet:fortios:3.3.10
Fortinet » Fortios » Version: 3.3.11

cpe:2.3:o:fortinet:fortios:3.3.11
Fortinet » Fortios » Version: 3.3.12

cpe:2.3:o:fortinet:fortios:3.3.12
Fortinet » Fortios » Version: 3.3.13

cpe:2.3:o:fortinet:fortios:3.3.13
Fortinet » Fortios » Version: 3.3.14

cpe:2.3:o:fortinet:fortios:3.3.14
Fortinet » Fortios » Version: 3.3.3

cpe:2.3:o:fortinet:fortios:3.3.3
Fortinet » Fortios » Version: 3.3.5

cpe:2.3:o:fortinet:fortios:3.3.5
Fortinet » Fortios » Version: 3.3.6

cpe:2.3:o:fortinet:fortios:3.3.6
Fortinet » Fortios » Version: 3.3.7

cpe:2.3:o:fortinet:fortios:3.3.7
Fortinet » Fortios » Version: 3.3.8

cpe:2.3:o:fortinet:fortios:3.3.8
Fortinet » Fortios » Version: 3.3.9

cpe:2.3:o:fortinet:fortios:3.3.9
Fortinet » Fortios » Version: 3.4.0

cpe:2.3:o:fortinet:fortios:3.4.0
Fortinet » Fortios » Version: 3.4.1

cpe:2.3:o:fortinet:fortios:3.4.1
Fortinet » Fortios » Version: 3.4.2

cpe:2.3:o:fortinet:fortios:3.4.2
Fortinet » Fortios » Version: 3.4.3

cpe:2.3:o:fortinet:fortios:3.4.3
Fortinet » Fortios » Version: 3.4.4

cpe:2.3:o:fortinet:fortios:3.4.4
Fortinet » Fortios » Version: 3.4.5

cpe:2.3:o:fortinet:fortios:3.4.5
Fortinet » Fortios » Version: 3.5.0

cpe:2.3:o:fortinet:fortios:3.5.0
Fortinet » Fortios » Version: 3.5.1

cpe:2.3:o:fortinet:fortios:3.5.1
Fortinet » Fortios » Version: 3.5.2

cpe:2.3:o:fortinet:fortios:3.5.2
Fortinet » Fortios » Version: 3.5.3

cpe:2.3:o:fortinet:fortios:3.5.3
Fortinet » Fortios » Version: 3.5.4

cpe:2.3:o:fortinet:fortios:3.5.4
Fortinet » Fortios » Version: 3.5.5

cpe:2.3:o:fortinet:fortios:3.5.5
Fortinet » Fortios » Version: 3.5.6

cpe:2.3:o:fortinet:fortios:3.5.6
Fortinet » Fortios » Version: 3.5.7

cpe:2.3:o:fortinet:fortios:3.5.7
Fortinet » Fortios » Version: 3.6.0

cpe:2.3:o:fortinet:fortios:3.6.0
Fortinet » Fortios » Version: 3.6.1

cpe:2.3:o:fortinet:fortios:3.6.1
Fortinet » Fortios » Version: 3.6.2

cpe:2.3:o:fortinet:fortios:3.6.2
Fortinet » Fortios » Version: 3.6.3

cpe:2.3:o:fortinet:fortios:3.6.3
Fortinet » Fortios » Version: 3.6.4

cpe:2.3:o:fortinet:fortios:3.6.4
Fortinet » Fortios » Version: 3.6.5

cpe:2.3:o:fortinet:fortios:3.6.5
Fortinet » Fortios » Version: 3.6.6

cpe:2.3:o:fortinet:fortios:3.6.6
Fortinet » Fortios » Version: 3.7.0

cpe:2.3:o:fortinet:fortios:3.7.0
Fortinet » Fortios » Version: 3.7.1

cpe:2.3:o:fortinet:fortios:3.7.1
Fortinet » Fortios » Version: 3.7.10

cpe:2.3:o:fortinet:fortios:3.7.10
Fortinet » Fortios » Version: 3.7.2

cpe:2.3:o:fortinet:fortios:3.7.2
Fortinet » Fortios » Version: 3.7.3

cpe:2.3:o:fortinet:fortios:3.7.3
Fortinet » Fortios » Version: 3.7.4

cpe:2.3:o:fortinet:fortios:3.7.4
Fortinet » Fortios » Version: 3.7.5

cpe:2.3:o:fortinet:fortios:3.7.5
Fortinet » Fortios » Version: 3.7.6

cpe:2.3:o:fortinet:fortios:3.7.6
Fortinet » Fortios » Version: 3.7.7

cpe:2.3:o:fortinet:fortios:3.7.7
Fortinet » Fortios » Version: 3.7.8

cpe:2.3:o:fortinet:fortios:3.7.8
Fortinet » Fortios » Version: 3.7.9

cpe:2.3:o:fortinet:fortios:3.7.9
Fortinet » Fortios » Version: 4.0.0

cpe:2.3:o:fortinet:fortios:4.0.0
Fortinet » Fortios » Version: 4.0.1

cpe:2.3:o:fortinet:fortios:4.0.1
Fortinet » Fortios » Version: 4.0.2

cpe:2.3:o:fortinet:fortios:4.0.2
Fortinet » Fortios » Version: 4.0.3

cpe:2.3:o:fortinet:fortios:4.0.3
Fortinet » Fortios » Version: 4.0.4

cpe:2.3:o:fortinet:fortios:4.0.4
Fortinet » Fortios » Version: 4.1.0

cpe:2.3:o:fortinet:fortios:4.1.0
Fortinet » Fortios » Version: 4.1.1

cpe:2.3:o:fortinet:fortios:4.1.1
Fortinet » Fortios » Version: 4.1.10

cpe:2.3:o:fortinet:fortios:4.1.10
Fortinet » Fortios » Version: 4.1.11

cpe:2.3:o:fortinet:fortios:4.1.11
Fortinet » Fortios » Version: 4.1.2

cpe:2.3:o:fortinet:fortios:4.1.2
Fortinet » Fortios » Version: 4.1.3

cpe:2.3:o:fortinet:fortios:4.1.3
Fortinet » Fortios » Version: 4.1.4

cpe:2.3:o:fortinet:fortios:4.1.4
Fortinet » Fortios » Version: 4.1.5

cpe:2.3:o:fortinet:fortios:4.1.5
Fortinet » Fortios » Version: 4.1.6

cpe:2.3:o:fortinet:fortios:4.1.6
Fortinet » Fortios » Version: 4.1.7

cpe:2.3:o:fortinet:fortios:4.1.7
Fortinet » Fortios » Version: 4.1.8

cpe:2.3:o:fortinet:fortios:4.1.8
Fortinet » Fortios » Version: 4.1.9

cpe:2.3:o:fortinet:fortios:4.1.9
Fortinet » Fortios » Version: 4.2.0

cpe:2.3:o:fortinet:fortios:4.2.0
Fortinet » Fortios » Version: 4.2.1

cpe:2.3:o:fortinet:fortios:4.2.1
Fortinet » Fortios » Version: 4.2.10

cpe:2.3:o:fortinet:fortios:4.2.10
Fortinet » Fortios » Version: 4.2.11

cpe:2.3:o:fortinet:fortios:4.2.11
Fortinet » Fortios » Version: 4.2.12

cpe:2.3:o:fortinet:fortios:4.2.12
Fortinet » Fortios » Version: 4.2.13

cpe:2.3:o:fortinet:fortios:4.2.13
Fortinet » Fortios » Version: 4.2.14

cpe:2.3:o:fortinet:fortios:4.2.14
Fortinet » Fortios » Version: 4.2.15

cpe:2.3:o:fortinet:fortios:4.2.15
Fortinet » Fortios » Version: 4.2.16

cpe:2.3:o:fortinet:fortios:4.2.16
Fortinet » Fortios » Version: 4.2.2

cpe:2.3:o:fortinet:fortios:4.2.2
Fortinet » Fortios » Version: 4.2.3

cpe:2.3:o:fortinet:fortios:4.2.3
Fortinet » Fortios » Version: 4.2.4

cpe:2.3:o:fortinet:fortios:4.2.4
Fortinet » Fortios » Version: 4.2.5

cpe:2.3:o:fortinet:fortios:4.2.5
Fortinet » Fortios » Version: 4.2.6

cpe:2.3:o:fortinet:fortios:4.2.6
Fortinet » Fortios » Version: 4.2.7

cpe:2.3:o:fortinet:fortios:4.2.7
Fortinet » Fortios » Version: 4.2.8

cpe:2.3:o:fortinet:fortios:4.2.8
Fortinet » Fortios » Version: 4.2.9

cpe:2.3:o:fortinet:fortios:4.2.9
Fortinet » Fortios » Version: 4.3.0

cpe:2.3:o:fortinet:fortios:4.3.0
Fortinet » Fortios » Version: 4.3.1

cpe:2.3:o:fortinet:fortios:4.3.1
Fortinet » Fortios » Version: 4.3.10

cpe:2.3:o:fortinet:fortios:4.3.10
Fortinet » Fortios » Version: 4.3.11

cpe:2.3:o:fortinet:fortios:4.3.11
Fortinet » Fortios » Version: 4.3.12

cpe:2.3:o:fortinet:fortios:4.3.12
Fortinet » Fortios » Version: 4.3.13

cpe:2.3:o:fortinet:fortios:4.3.13
Fortinet » Fortios » Version: 4.3.14

cpe:2.3:o:fortinet:fortios:4.3.14
Fortinet » Fortios » Version: 4.3.15

cpe:2.3:o:fortinet:fortios:4.3.15
Fortinet » Fortios » Version: 4.3.16

cpe:2.3:o:fortinet:fortios:4.3.16
Fortinet » Fortios » Version: 4.3.17

cpe:2.3:o:fortinet:fortios:4.3.17
Fortinet » Fortios » Version: 4.3.18

cpe:2.3:o:fortinet:fortios:4.3.18
Fortinet » Fortios » Version: 4.3.19

cpe:2.3:o:fortinet:fortios:4.3.19
Fortinet » Fortios » Version: 4.3.2

cpe:2.3:o:fortinet:fortios:4.3.2
Fortinet » Fortios » Version: 4.3.3

cpe:2.3:o:fortinet:fortios:4.3.3
Fortinet » Fortios » Version: 4.3.4

cpe:2.3:o:fortinet:fortios:4.3.4
Fortinet » Fortios » Version: 4.3.5

cpe:2.3:o:fortinet:fortios:4.3.5
Fortinet » Fortios » Version: 4.3.6

cpe:2.3:o:fortinet:fortios:4.3.6
Fortinet » Fortios » Version: 4.3.7

cpe:2.3:o:fortinet:fortios:4.3.7
Fortinet » Fortios » Version: 4.3.8

cpe:2.3:o:fortinet:fortios:4.3.8
Fortinet » Fortios » Version: 4.3.9

cpe:2.3:o:fortinet:fortios:4.3.9
Fortinet » Fortios » Version: 5.0

cpe:2.3:o:fortinet:fortios:5.0
Fortinet » Fortios » Version: 5.0.0

cpe:2.3:o:fortinet:fortios:5.0.0
Fortinet » Fortios » Version: 5.0.1

cpe:2.3:o:fortinet:fortios:5.0.1
Fortinet » Fortios » Version: 5.0.10

cpe:2.3:o:fortinet:fortios:5.0.10
Fortinet » Fortios » Version: 5.0.11

cpe:2.3:o:fortinet:fortios:5.0.11
Fortinet » Fortios » Version: 5.0.12

cpe:2.3:o:fortinet:fortios:5.0.12
Fortinet » Fortios » Version: 5.0.13

cpe:2.3:o:fortinet:fortios:5.0.13
Fortinet » Fortios » Version: 5.0.14

cpe:2.3:o:fortinet:fortios:5.0.14
Fortinet » Fortios » Version: 5.0.2

cpe:2.3:o:fortinet:fortios:5.0.2
Fortinet » Fortios » Version: 5.0.3

cpe:2.3:o:fortinet:fortios:5.0.3
Fortinet » Fortios » Version: 5.0.4

cpe:2.3:o:fortinet:fortios:5.0.4
Fortinet » Fortios » Version: 5.0.5

cpe:2.3:o:fortinet:fortios:5.0.5
Fortinet » Fortios » Version: 5.0.6

cpe:2.3:o:fortinet:fortios:5.0.6
Fortinet » Fortios » Version: 5.0.7

cpe:2.3:o:fortinet:fortios:5.0.7
Fortinet » Fortios » Version: 5.0.8

cpe:2.3:o:fortinet:fortios:5.0.8
Fortinet » Fortios » Version: 5.0.9

cpe:2.3:o:fortinet:fortios:5.0.9
Fortinet » Fortios » Version: 5.2.0

cpe:2.3:o:fortinet:fortios:5.2.0
Fortinet » Fortios » Version: 5.2.1

cpe:2.3:o:fortinet:fortios:5.2.1
Fortinet » Fortios » Version: 5.2.10

cpe:2.3:o:fortinet:fortios:5.2.10
Fortinet » Fortios » Version: 5.2.11

cpe:2.3:o:fortinet:fortios:5.2.11
Fortinet » Fortios » Version: 5.2.12

cpe:2.3:o:fortinet:fortios:5.2.12
Fortinet » Fortios » Version: 5.2.13

cpe:2.3:o:fortinet:fortios:5.2.13
Fortinet » Fortios » Version: 5.2.14

cpe:2.3:o:fortinet:fortios:5.2.14
Fortinet » Fortios » Version: 5.2.15

cpe:2.3:o:fortinet:fortios:5.2.15
Fortinet » Fortios » Version: 5.2.2

cpe:2.3:o:fortinet:fortios:5.2.2
Fortinet » Fortios » Version: 5.2.3

cpe:2.3:o:fortinet:fortios:5.2.3
Fortinet » Fortios » Version: 5.2.4

cpe:2.3:o:fortinet:fortios:5.2.4
Fortinet » Fortios » Version: 5.2.5

cpe:2.3:o:fortinet:fortios:5.2.5
Fortinet » Fortios » Version: 5.2.6

cpe:2.3:o:fortinet:fortios:5.2.6
Fortinet » Fortios » Version: 5.2.7

cpe:2.3:o:fortinet:fortios:5.2.7
Fortinet » Fortios » Version: 5.2.8

cpe:2.3:o:fortinet:fortios:5.2.8
Fortinet » Fortios » Version: 5.2.9

cpe:2.3:o:fortinet:fortios:5.2.9
Fortinet » Fortios » Version: 5.4

cpe:2.3:o:fortinet:fortios:5.4
Fortinet » Fortios » Version: 5.4.0

cpe:2.3:o:fortinet:fortios:5.4.0
Fortinet » Fortios » Version: 5.4.1

cpe:2.3:o:fortinet:fortios:5.4.1
Fortinet » Fortios » Version: 5.4.10

cpe:2.3:o:fortinet:fortios:5.4.10
Fortinet » Fortios » Version: 5.4.11

cpe:2.3:o:fortinet:fortios:5.4.11
Fortinet » Fortios » Version: 5.4.12

cpe:2.3:o:fortinet:fortios:5.4.12
Fortinet » Fortios » Version: 5.4.13

cpe:2.3:o:fortinet:fortios:5.4.13
Fortinet » Fortios » Version: 5.4.2

cpe:2.3:o:fortinet:fortios:5.4.2
Fortinet » Fortios » Version: 5.4.3

cpe:2.3:o:fortinet:fortios:5.4.3
Fortinet » Fortios » Version: 5.4.4

cpe:2.3:o:fortinet:fortios:5.4.4
Fortinet » Fortios » Version: 5.4.5

cpe:2.3:o:fortinet:fortios:5.4.5
Fortinet » Fortios » Version: 5.4.6

cpe:2.3:o:fortinet:fortios:5.4.6
Fortinet » Fortios » Version: 5.4.7

cpe:2.3:o:fortinet:fortios:5.4.7
Fortinet » Fortios » Version: 5.4.8

cpe:2.3:o:fortinet:fortios:5.4.8
Fortinet » Fortios » Version: 5.4.9

cpe:2.3:o:fortinet:fortios:5.4.9
Fortinet » Fortios » Version: 5.6.0

cpe:2.3:o:fortinet:fortios:5.6.0
Fortinet » Fortios » Version: 5.6.1

cpe:2.3:o:fortinet:fortios:5.6.1
Fortinet » Fortios » Version: 5.6.10

cpe:2.3:o:fortinet:fortios:5.6.10
Fortinet » Fortios » Version: 5.6.11

cpe:2.3:o:fortinet:fortios:5.6.11
Fortinet » Fortios » Version: 5.6.12

cpe:2.3:o:fortinet:fortios:5.6.12
Fortinet » Fortios » Version: 5.6.13

cpe:2.3:o:fortinet:fortios:5.6.13
Fortinet » Fortios » Version: 5.6.14

cpe:2.3:o:fortinet:fortios:5.6.14
Fortinet » Fortios » Version: 5.6.2

cpe:2.3:o:fortinet:fortios:5.6.2
Fortinet » Fortios » Version: 5.6.3

cpe:2.3:o:fortinet:fortios:5.6.3
Fortinet » Fortios » Version: 5.6.4

cpe:2.3:o:fortinet:fortios:5.6.4
Fortinet » Fortios » Version: 5.6.5

cpe:2.3:o:fortinet:fortios:5.6.5
Fortinet » Fortios » Version: 5.6.6

cpe:2.3:o:fortinet:fortios:5.6.6
Fortinet » Fortios » Version: 5.6.7

cpe:2.3:o:fortinet:fortios:5.6.7
Fortinet » Fortios » Version: 5.6.8

cpe:2.3:o:fortinet:fortios:5.6.8
Fortinet » Fortios » Version: 5.6.9

cpe:2.3:o:fortinet:fortios:5.6.9
Fortinet » Fortios » Version: 6.0.0

cpe:2.3:o:fortinet:fortios:6.0.0
Fortinet » Fortios » Version: 6.0.1

cpe:2.3:o:fortinet:fortios:6.0.1
Fortinet » Fortios » Version: 6.0.2

cpe:2.3:o:fortinet:fortios:6.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-13374

Products

Pricing

Contact Us