A improper restriction of communication channel to intended endpoints vulnerability [CWE-923] in Fortinet FortiOS version 7.4.0 through 7.4.4, 7.2.0 through 7.2.8, 7.0.0 through 7.0.15, 6.4.0 through 6.4.15 and before 6.2.16, Fortinet FortiProxy version 7.4.0 through 7.4.2, 7.2.0 through 7.2.9 and before 7.0.15, Fortinet FortiManager version 7.4.0 through 7.4.2, 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.14 and before 6.2.13, Fortinet FortiAnalyzer version 7.4.0 through 7.4.2, 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.14 and before 6.2.13, Fortinet FortiVoice version 7.0.0 through 7.0.2 before 6.4.8 and Fortinet FortiWeb before 7.4.2 may allow an unauthenticated attacker in a man-in-the-middle position to impersonate the management device (FortiCloud server or/and in certain conditions, FortiManager), via intercepting the FGFM authentication request between the management device and the managed device
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:HFortinet Fortianalyzer
APPFortinet6.2.0 – 6.2.14 (bez)6.4.0 – 6.4.15 (bez)7.0.0 – 7.0.12 (bez)7.2.0 – 7.2.5 (bez)7.4.0 – 7.4.3 (bez)Fortinet Fortimanager
APPFortinet6.2.0 – 6.2.14 (bez)6.4.0 – 6.4.15 (bez)7.0.0 – 7.0.12 (bez)7.2.0 – 7.2.5 (bez)7.4.0 – 7.4.3 (bez)Fortinet FortiOS
OSFortinet6.4.0 – 7.0.16 (bez)7.2.0 – 7.2.9 (bez)7.4.0 – 7.4.5 (bez)Fortinet Fortiproxy
APPFortinet2.0.0 – 7.0.16 (bez)7.2.0 – 7.2.10 (bez)7.4.0 – 7.4.3 (bez)Fortinet Fortivoice
APPFortinet6.0.0 – 6.4.9 (bez)7.0.0 – 7.0.3 (bez)Fortinet Fortiweb
APPFortinet7.4.0 – 7.4.3 (bez)
Related vulnerabilities
Fortinet – Auth Bypass przez FortiCloud SSO w wielu produktach
Fortinet FortiOS/FortiProxy/FortiSwitchManager — Auth Bypass przez SAML
Path Traversal w Fortinet FortiWeb umożliwiający zdalne wykonanie poleceń
Krytyczna podatność SQL Injection w Fortinet FortiWeb — obejście uwierzytelnienia
Stack-based buffer overflow RCE w produktach Fortinet (FortiMail, FortiVoice i inne)