THREATOPS
THREAT OPSCVEs › CVE-2018-13382

CVE-2018-13382 — Fortinet FortiOS and FortiProxy Improper Authorization

CISA KEVExploited: confirmedFortinet

An Improper Authorization vulnerability in Fortinet FortiOS and FortiProxy under SSL VPN web portal allows an unauthenticated attacker to modify the password.

Vulnerability details