CVE-2018-13383
Fortinet FortiOS and FortiProxy Out-of-bounds Write
CVSS
—
No CVSS
EPSS
33.6%
p98
KEV
YES
Jan 10, 2022
Exploit Today
79
0-100
Published: — · Last modified: —
33.6%EPSS · 30 days33.6%
2026-06-302026-07-16
Product
Fortinet / FortiOS and FortiProxy
Vulnerability
Fortinet FortiOS and FortiProxy Out-of-bounds Write
Added to KEV
Jan 10, 2022
Remediate by
Jul 10, 2022
Known ransomware use
Yes
Summary description
A heap buffer overflow in Fortinet FortiOS and FortiProxy may cause the SSL VPN web service termination for logged in users.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-13383
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2024-555919.8 CRI99.9%
KEV—80Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability8dCVE-2018-13382—99.6%
KEV—80Fortinet FortiOS and FortiProxy Improper Authorization—CVE-2025-244728.1 HIG86.2%
KEV—76Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability8d