Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-12818

An insufficient logging vulnerability in FortiGate before 6.4.1 may allow the traffic from an unauthenticated attacker to Fortinet owned IP addresses to go unnoticed.

Published

2020-09-24T15:15:13.237

Last Modified

2024-11-21T05:00:20.173

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.3 (MEDIUM)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: NONE
Availability Impact: NONE

Exploitability Score

10.0

Impact Score

2.9

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	fortinet	fortios	< 6.4.1	Yes
Hardware	fortinet	fortigate_1000d	-	No
Hardware	fortinet	fortigate_100e	-	No
Hardware	fortinet	fortigate_100f	-	No
Hardware	fortinet	fortigate_1100e	-	No
Hardware	fortinet	fortigate_1500d	-	No
Hardware	fortinet	fortigate_1800f	-	No
Hardware	fortinet	fortigate_2000e	-	No
Hardware	fortinet	fortigate_200e	-	No
Hardware	fortinet	fortigate_2200e	-	No
Hardware	fortinet	fortigate_3000d	-	No
Hardware	fortinet	fortigate_3300e	-	No
Hardware	fortinet	fortigate_3400e	-	No
Hardware	fortinet	fortigate_3600e	-	No
Hardware	fortinet	fortigate_3700d	-	No
Hardware	fortinet	fortigate_3960e	-	No
Hardware	fortinet	fortigate_3980e	-	No
Hardware	fortinet	fortigate_400e	-	No
Hardware	fortinet	fortigate_40f	-	No
Hardware	fortinet	fortigate_4200f	-	No
Hardware	fortinet	fortigate_5001d	-	No
Hardware	fortinet	fortigate_5001e	-	No
Hardware	fortinet	fortigate_5001e1	-	No
Hardware	fortinet	fortigate_5053b	-	No
Hardware	fortinet	fortigate_5060	-	No
Hardware	fortinet	fortigate_50e	-	No
Hardware	fortinet	fortigate_5144c	-	No
Hardware	fortinet	fortigate_600e	-	No
Hardware	fortinet	fortigate_60e	-	No
Hardware	fortinet	fortigate_60f	-	No
Hardware	fortinet	fortigate_6300f	-	No
Hardware	fortinet	fortigate_6500f	-	No
Hardware	fortinet	fortigate_7040e	-	No
Hardware	fortinet	fortigate_7060e	-	No
Hardware	fortinet	fortigate_80e	-	No
Hardware	fortinet	fortigate_80f	-	No

References

https://fortiguard.com/advisory/FG-IR-20-033 Vendor Advisory ([email protected])
https://www.fortiguard.com/psirt/FG-IR-20-033 Vendor Advisory ([email protected])
https://fortiguard.com/advisory/FG-IR-20-033 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)