CVE-2018-13382: Fortinet FortiOS and FortiProxy Improper Authorization. An

Fortinet FortiOS and FortiProxy Improper Authorization. An Improper Authorization vulnerability in Fortinet FortiOS and FortiProxy under SSL VPN web portal allows an unauthenticated attacker to modify the password.

• CISA KEV-listed (remediation due 2022-07-10)
• used in ransomware campaigns
• EPSS 87.1% (99.5% percentile)

Browse the CVE database

Read the full analysis on IntelFusions