General Disclosure

This is a path-traversal vulnerability in the FortiOS SSL VPN web portal that could potentially allow an unauthenticated attacker to download files through specially crafted HTTP resource requests. Fortinet advises customers to upgrade to FortiOS 5.4.13, 5.6.11, 6.0.6, 6.2.2.

POC

Proof of concept, if available.

telnet 1.2.3.4 5678

Affected Systems

Here is a list of the operating systems we have tested which are vulnerable to this attack:

FortiOS 5.4.12 and lower
FortiOS 5.6.10 and lower
FortiOS 6.0.5 and lower
FortiOS 6.2.1 and lower

Possible Mitigations

A list of all the possible mitigations.

Thanks

Thanks from

References

SecLists
- URL
Reddit
- URL
Tweakers (Dutch)
- URL

Wiki

Page

User

General Disclosure

POC

Affected Systems

Possible Mitigations

Thanks

References