CVE-2018-13382
Fortinet FortiOS and FortiProxy Improper Authorization
CVSS
—
Sin CVSS
EPSS
81.7%
p100
KEV
SÍ
10 ene 2022
Exploit Today
80
0-100
Publicado: — · Última mod.: —
81.7%EPSS · 30 días81.7%
2026-06-302026-07-16
Producto
Fortinet / FortiOS and FortiProxy
Vulnerabilidad
Fortinet FortiOS and FortiProxy Improper Authorization
Añadido a KEV
10 ene 2022
Remediar antes de
10 jul 2022
Uso conocido en ransomware
Sí
Descripción resumida
An Improper Authorization vulnerability in Fortinet FortiOS and FortiProxy under SSL VPN web portal allows an unauthenticated attacker to modify the password.
Acción requerida
Apply updates per vendor instructions.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2018-13382
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2024-555919.8 CRÍ99.9%
KEV—80Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability8dCVE-2018-13383—98.2%
KEV—79Fortinet FortiOS and FortiProxy Out-of-bounds Write—CVE-2025-244728.1 ALT86.2%
KEV—76Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability8d