CVE-2018-9185

Published: Jul 5, 2018

Modified: Oct 25, 2024

PUBLISHED

Description

An information disclosure vulnerability in Fortinet FortiOS 6.0.0 and below versions reveals user's web portal login credentials in a Javascript file sent to client-side when pages bookmarked in web portal use the Single Sign-On feature.

Vendor	Product	Versions
Fortinet	Fortinet FortiOS	affected `FortiOS 6.0.0 and below`

References

104535

vdb-entry

x_refsource_BID

1041186

vdb-entry

x_refsource_SECTRACK

https://fortiguard.com/advisory/FG-IR-18-027

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-9185

Description

Affected Products

References