CVE-2018-13374

⚠ KEVEPSS 3.4%

Fortinet FortiOS and FortiADC Improper Access Control Vulnerability

Added to CISA KEV: 9/8/2022

Description

Fortinet FortiOS and FortiADC contain an improper access control vulnerability that allows attackers to obtain the LDAP server login credentials configured in FortiGate by pointing a LDAP server connectivity test request to a rogue LDAP server.

Affected packages (0)

No package mapping in OSV.