CVE-2018-13376 | THREATINT

Description

An uninitialized memory buffer leak exists in Fortinet FortiOS 5.6.1 to 5.6.3, 5.4.6 to 5.4.7, 5.2 all versions under web proxy's disclaimer response web pages, potentially causing sensitive data to be displayed in the HTTP response.

PUBLISHED Reserved 2018-07-06 | Published 2018-11-27 | Updated 2024-10-25 | Assigner fortinet

Problem types

Information disclosure

Product status

FortiOS 5.6.1 to 5.6.3, 5.4.6 to 5.4.7, 5.2 all versions

affected

References

www.securityfocus.com/bid/106036 (106036) vdb-entry

herolab.usd.de/...nt/uploads/sites/4/2018/12/usd20180031.txt

fortiguard.com/advisory/FG-IR-18-325

www.securityfocus.com/bid/106036 (106036) vdb-entry

herolab.usd.de/...nt/uploads/sites/4/2018/12/usd20180031.txt

fortiguard.com/advisory/FG-IR-18-325

cve.org (CVE-2018-13376)

nvd.nist.gov (CVE-2018-13376)

Download JSON