CVE-2018-13374

MEDIUM KEV RANSOMWARE

Fortinet Fortiadc < 5.4.5 - Incorrect Permission Assignment

Title source: rule

Description

A Improper Access Control in Fortinet FortiOS 6.0.2, 5.6.7 and before, FortiADC 6.1.0, 6.0.0 to 6.0.1, 5.4.0 to 5.4.4 allows attacker to obtain the LDAP server login credentials configured in FortiGate via pointing a LDAP server connectivity test request to a rogue LDAP server instead of the configured one.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Julio Ureña · pythonwebappshardware

https://www.exploit-db.com/exploits/46171

View Code ZIP pw:eip

nomisec WRITEUP

by Justjeff211 · poc

https://github.com/Justjeff211/conti-ransomware-writeup

View Code ZIP pw:eip

References (2)

[Vendor Advisory] https://fortiguard.com/advisory/FG-IR-18-157

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-13374

Scores

CVSS v3 4.3

EPSS 0.0378

EPSS Percentile 88.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Details

CISA KEV 2022-09-08

VulnCheck KEV 2021-02-16

InTheWild.io 2022-01-27

ENISA EUVD EUVD-2018-5318

Ransomware Use Confirmed

CWE

CWE-732

Status published

Products (3)

fortinet/fortiadc 6.1.0

fortinet/fortiadc 5.4.0 - 5.4.5

fortinet/fortios < 6.0.3

Published Jan 22, 2019

KEV Added Sep 08, 2022

Tracked Since Feb 18, 2026