{"id":263274,"date":"2022-03-09T23:04:25","date_gmt":"2022-03-09T22:04:25","guid":{"rendered":"https:\/\/www.borncity.com\/blog\/?p=263274"},"modified":"2022-03-09T23:04:25","modified_gmt":"2022-03-09T22:04:25","slug":"fortinet-vulnerability-advisories-march-2022","status":"publish","type":"post","link":"https:\/\/borncity.com\/blog\/2022\/03\/09\/fortinet-vulnerability-advisories-march-2022\/","title":{"rendered":"Fortinet Vulnerability Advisories March 2022"},"content":{"rendered":"

\"SicherheitDer US-Sicherheitsanbieter Fortinet hat bereits Anfang M\u00e4rz 2022 Sicherheitshinweise auf gr\u00f6\u00dfere Schwachstellen in seinem Produkten (Firewalls etc.) ver\u00f6ffentlicht. Blog-Leser Martin H. hatte mich die Tage per Mail \u00fcber diese Sicherheitshinweise informiert. Ich stelle die betreffenden Informationen daher einfach mal unkommentiert im Blog hier ein.<\/p>\n

<\/p>\n

March 2022 Vulnerability Advisories<\/h2>\n

\"\"Hier die Liste der Schwachstellen in den diversen Fortinet-Produkten.<\/p>\n

FortiWLM – Path traversal vulnerability<\/h3>\n

Advisory Summary: Path traversal vulnerability in FortiWLM.<\/p>\n

Affected Products: FortiWLM versions 8.6.2 and below. FortiWLM versions 8.5.2 and below. FortiWLM versions 8.4.2 and below. FortiWLM versions 8.3.3 and below.<\/p>\n

Fortinet Advisory: https:\/\/www.fortiguard.com\/psirt\/FG-IR-21-106<\/a><\/p>\n

CVSS Score: 5.3<\/p>\n

FortiManager — Password observed in cleartext in the config conflict file<\/h3>\n

Advisory Summary: Password observed in cleartext in the config conflict file<\/p>\n

Affected Products: FortiManager version 6.2.0 through 6.2.9FortiManager version 6.4.0 through 6.4.7FortiManager version 7.0.0 through 7.0.2<\/p>\n

Fortinet Advisory: https:\/\/www.fortiguard.com\/psirt\/FG-IR-21-165<\/a><\/p>\n

CVSS Score: 2.8<\/p>\n

FortiPortal – Insecure password generation<\/h3>\n

Advisory Summary: Weak PRNG in FortiPortal<\/p>\n

Affected Products: FortiPortal version 6.0.5 and below. FortiPortal version 5.3.6 and below. FortiPortal version 5.2.6 and below. FortiPortal version 5.1.2 and below. FortiPortal version 5.0.3 and below. FortiPortal version 4.2.4 and below. FortiPortal version 4.1.2 and below. FortiPortal version 4.0.4 and below.<\/p>\n

Fortinet Advisory: https:\/\/www.fortiguard.com\/psirt\/FG-IR-21-099<\/a><\/p>\n

CVSS Score: 7.4<\/p>\n

FortiMail – Administrative authentication bypass<\/h3>\n

Advisory Summary: Improper authentication in FortiMail.<\/p>\n

Affected Products: FortiMail version 7.0.0 and below. FortiMail version 6.4.5 and below. FortiMail version 6.2.7 and below. FortiMail version 6.0.11 and below. FortiMail version 5.4.12 and below.<\/p>\n

Fortinet Advisory: https:\/\/www.fortiguard.com\/psirt\/FG-IR-21-028<\/a><\/p>\n

CVSS Score: 9.3<\/p>\n

FortiMail – Unsafe handling of CGI environment parameters in web server framework<\/h3>\n

Advisory Summary: An instance of Improper Input Validation (CWE-20) in the CGI  facilities affects FortiMail<\/p>\n

Affected Products: FortiMail 7.0.0. FortiMail 6.4.5 and below. FortiMail 6.2.7 and below. FortiMail 6.0.11 and below. FortiMail 5.4.12 and below.<\/p>\n

Fortinet Advisory: https:\/\/www.fortiguard.com\/psirt\/FG-IR-21-008<\/a><\/p>\n

CVSS Score: 7.3<\/p>\n

FortiAP-C – Command injection in CLI<\/h3>\n

Advisory Summary: Command injection vulnerability in FortiAP-C CLI<\/p>\n

Affected Products: FortiAP-C version 5.4.0 through 5.4.3<\/p>\n

Fortinet Advisory: https:\/\/www.fortiguard.com\/psirt\/FG-IR-21-227<\/a><\/p>\n

CVSS Score: 7.3<\/p>\n

FortiOS – Bypassing FortiGate security profiles via SNI in Client Hello<\/h3>\n

Advisory Summary: Information disclosure in FortiGate<\/p>\n

Affected Products: FortiOS version 6.4.3 and belowFortiOS version 6.2.5 and belowFortiOS version 6.0.11 and below<\/p>\n

Fortinet Advisory: https:\/\/www.fortiguard.com\/psirt\/FG-IR-20-091<\/a><\/p>\n

CVSS Score: 2.6<\/p>\n

FortiToken Mobile (Android) – Deny request approved from External push notification<\/h3>\n

Advisory Summary:<\/p>\n

Improper access control vulnerability in FortiToken Mobile (Android) external push notification<\/p>\n

Affected Products: FortiToken Mobile (Android) version 5.1.0 and below.<\/p>\n

Fortinet Advisory: https:\/\/www.fortiguard.com\/psirt\/FG-IR-21-210<\/a><\/p>\n

CVSS Score: 3.9<\/p>\n

FortiAnalyzer, FortiManager – bypass of client-side password change policy enforcement<\/h3>\n

Advisory Summary: Password-change policy bypass in FortiAnalyzer and FortiManager<\/p>\n

Affected Products: FortiManager version 5.6.0 through 5.6.11 FortiManager version 6.0.0 through 6.0.11 FortiManager version 6.2.0 through 6.2.9 FortiManager version 6.4.0 through 6.4.7 FortiManager version 7.0.0 through 7.0.2 FortiAnalyzer version 5.6.0 through 5.6.11 FortiAnalyzer version 6.0.0 through 6.0.11 FortiAnalyzer version 6.2.0 through 6.2.9 FortiAnalyzer version 6.4.0 through 6.4.7 FortiAnalyzer version 7.0.0 through 7.0.2<\/p>\n

Fortinet Advisory: https:\/\/www.fortiguard.com\/psirt\/FG-IR-21-255<\/a><\/p>\n

CVSS Score: 3.9<\/p>\n

FortiWLM – command Injection in script handlers<\/h3>\n

Advisory Summary: OS command injection in FortiWLM<\/p>\n

Affected Products: FortiWLM version 8.6.2 and below FortiWLM version 8.5.2 and below FortiWLM version 8.4.2 and below<\/p>\n

Fortinet Advisory: https:\/\/www.fortiguard.com\/psirt\/FG-IR-21-128<\/a><\/p>\n

CVSS Score: 8.3<\/p>\n

FortiWLM – SQL Injection in AP report handlers<\/h3>\n

Advisory Summary: SQL injection in FortiWLM<\/p>\n

Affected Products: FortiWLM version 8.6.2 and below. FortiWLM version 8.5.2 and below. FortiWLM version 8.4.2 and below. FortiWLM version 8.3.2 and below.<\/p>\n

Fortinet Advisory: https:\/\/www.fortiguard.com\/psirt\/FG-IR-21-189<\/a><\/p>\n

CVSS Score: 8.3<\/p>\n","protected":false},"excerpt":{"rendered":"

Der US-Sicherheitsanbieter Fortinet hat bereits Anfang M\u00e4rz 2022 Sicherheitshinweise auf gr\u00f6\u00dfere Schwachstellen in seinem Produkten (Firewalls etc.) ver\u00f6ffentlicht. Blog-Leser Martin H. hatte mich die Tage per Mail \u00fcber diese Sicherheitshinweise informiert. Ich stelle die betreffenden Informationen daher einfach mal unkommentiert … Weiterlesen →<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[426],"tags":[4328],"class_list":["post-263274","post","type-post","status-publish","format-standard","hentry","category-sicherheit","tag-sicherheit"],"_links":{"self":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/263274","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/comments?post=263274"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/263274\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/media?parent=263274"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/categories?post=263274"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/tags?post=263274"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}