Fortinet FortiOS 5.x < 5.4.2 Flow-mode Detection Bypass
Low Nessus Plugin ID 95439
SynopsisThe remote host is affected by a security bypass vulnerability.
DescriptionThe remote FortiGate device is running a version of FortiOS that is 5.x prior to 5.4.2. It is, therefore, affected by a security bypass vulnerability when reloading the scanning engine after an update that results in active network sessions no longer being monitored by flow-mode detection. An unauthenticated, remote attacker can exploit this vulnerability to bypass security protection.
SolutionUpgrade to Fortinet FortiOS version 5.4.2 or later.