Vulnerabilities > Fortinet > Fortios > 5.6.13

DATE CVE VULNERABILITY TITLE RISK
2019-06-04 CVE-2018-13384 Open Redirect vulnerability in Fortinet Fortios
A Host Header Redirection vulnerability in Fortinet FortiOS all versions below 6.0.5 under SSL VPN web portal allows a remote attacker to potentially poison HTTP cache and subsequently redirect SSL VPN web portal users to arbitrary web domains.
network
low complexity
fortinet CWE-601
6.1
2019-05-29 CVE-2018-13365 Information Exposure vulnerability in Fortinet Fortios
An Information Exposure vulnerability in Fortinet FortiOS 6.0.1, 5.6.5 and below, allow attackers to learn private IP as well as the hostname of FortiGate via Application Control Block page.
network
low complexity
fortinet CWE-200
5.3
2019-01-22 CVE-2018-13374 Incorrect Permission Assignment for Critical Resource vulnerability in Fortinet Fortiadc and Fortios
A Improper Access Control in Fortinet FortiOS 6.0.2, 5.6.7 and before, FortiADC 6.1.0, 6.0.0 to 6.0.1, 5.4.0 to 5.4.4 allows attacker to obtain the LDAP server login credentials configured in FortiGate via pointing a LDAP server connectivity test request to a rogue LDAP server instead of the configured one.
network
low complexity
fortinet CWE-732
4.3
2018-07-05 CVE-2018-9185 Information Exposure vulnerability in Fortinet Fortios
An information disclosure vulnerability in Fortinet FortiOS 6.0.0 and below versions reveals user's web portal login credentials in a Javascript file sent to client-side when pages bookmarked in web portal use the Single Sign-On feature.
network
high complexity
fortinet CWE-200
8.1