CVE-2020-12818

CVE Database · CVE-2020-12818

CVE-2020-12818

· MEDIUMModified

CVSS v3.1

5.3

EPSS

0.89%

Published

Sep 24, 2020

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

An insufficient logging vulnerability in FortiGate before 6.4.1 may allow the traffic from an unauthenticated attacker to Fortinet owned IP addresses to go unnoticed.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected Products (36)

fortinet · fortios (up to 6.4.1)vulnerable

fortinet · fortigate_1000d

fortinet · fortigate_100e

fortinet · fortigate_100f

fortinet · fortigate_1100e

fortinet · fortigate_1500d

fortinet · fortigate_1800f

fortinet · fortigate_2000e

fortinet · fortigate_200e

fortinet · fortigate_2200e

fortinet · fortigate_3000d

fortinet · fortigate_3300e

fortinet · fortigate_3400e

References (3)

https://fortiguard.com/advisory/FG-IR-20-033

Vendor Advisory

https://www.fortiguard.com/psirt/FG-IR-20-033

Vendor Advisory

https://fortiguard.com/advisory/FG-IR-20-033

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs