CVE-2018-13379

Fortinet FortiOS SSL VPN Path Traversal Vulnerability

Description

Fortinet FortiOS SSL VPN web portal contains a path traversal vulnerability that may allow an unauthenticated attacker to download FortiOS system files through specially crafted HTTP resource requests.

Severity: CRITICAL

CVSS Score: 9.1

Vendor: Fortinet

Product: FortiOS