Fortinet FortiGate < 6.0.1 Plain Text Credentials (FG-IR-18-027)

Medium Nessus Plugin ID 110812

Synopsis

The remote host is affected by multiple vulnerabilities.

Description

The remote host is running FortiOS prior to 6.0.1. It is, therefore, affected by multiple vulnerabilities.

Solution

Upgrade to Fortinet FortiOS version 6.0.1 or later.

See Also

https://fortiguard.com/psirt/FG-IR-18-027

Plugin Details

Severity: Medium

ID: 110812

File Name: fortios_FG-IR-18-027.nasl

Version: 1.1

Type: local

Family: Firewalls

Published: 2018/06/29

Modified: 2018/06/29

Dependencies: 73522

Risk Information

Risk Factor: Medium

CVSS Score Source: CVE-2018-9185

CVSSv2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSSv3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Vulnerability Information

CPE: cpe:/o:fortinet:fortios

Required KB Items: Host/Fortigate/model, Host/Fortigate/version, Settings/ParanoidReport

Patch Publication Date: 2018/06/22

Vulnerability Publication Date: 2018/06/22

Reference Information

CVE: CVE-2018-9185

BID: 104288, 104312, 102151

IAVA: 2018-A-0197