CVE-2013-1414

Multiple cross-site request forgery (CSRF) vulnerabilities in Fortinet FortiOS on FortiGate firewall devices before 4.3.13 and 5.x before 5.0.2 allow remote attackers to hijack the authentication of administrators for requests that modify (1) settings or (2) policies, or (3) restart the device via a rebootme action to system/maintenance/shutdown.

CVSS v2.0 5.1 MEDIUM

5.1^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:H/Au:N/C:P/I:P/A:P

Exploitability : 4.9 / Impact : 6.4

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.exploit-db.com/exploits/26528/	Exploit

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:o:fortinet:fortios:5.0.1:::::::*
	cpe:2.3:o:fortinet:fortios:5.0:::::::*
	cpe:2.3:o:fortinet:fortios::::::::
	cpe:2.3:o:fortinet:fortios:4.3.10:::::::*

OR	cpe:2.3:h:fortinet:fortigate-3040b:-:::::::*
	cpe:2.3:h:fortinet:fortigate-3240c:-:::::::*
	cpe:2.3:h:fortinet:fortigate-5001b:-:::::::*
	cpe:2.3:h:fortinet:fortigate-80c:-:::::::*
	cpe:2.3:h:fortinet:fortigate-40c:-:::::::*
	cpe:2.3:h:fortinet:fortigate-20c:-:::::::*
	cpe:2.3:h:fortinet:fortigate-110c:-:::::::*
	cpe:2.3:h:fortinet:fortigate-voice-80c:-:::::::*
	cpe:2.3:h:fortinet:fortigate-1240b:-:::::::*
	cpe:2.3:h:fortinet:fortigate-300c:-:::::::*
	cpe:2.3:h:fortinet:fortigate-5020:-:::::::*
	cpe:2.3:h:fortinet:fortigate-3140b:-:::::::*
	cpe:2.3:h:fortinet:fortigate-60c:-:::::::*
	cpe:2.3:h:fortinet:fortigate-600c:-:::::::*
	cpe:2.3:h:fortinet:fortigate-5001a-sw:-:::::::*
	cpe:2.3:h:fortinet:fortigate-310b:-:::::::*
	cpe:2.3:h:fortinet:fortigate-800c:-:::::::*
	cpe:2.3:h:fortinet:fortigate-100d:-:::::::*
	cpe:2.3:h:fortinet:fortigate-50b:-:::::::*
	cpe:2.3:h:fortinet:fortigate-3810a:-:::::::*
	cpe:2.3:h:fortinet:fortigate-1000c:-:::::::*
	cpe:2.3:h:fortinet:fortigate-5101c:-:::::::*
	cpe:2.3:h:fortinet:fortigaterugged-100c:-:::::::*
	cpe:2.3:h:fortinet:fortigate-3950b:-:::::::*
	cpe:2.3:h:fortinet:fortigate-5140b:-:::::::*
	cpe:2.3:h:fortinet:fortigate-5060:-:::::::*
	cpe:2.3:h:fortinet:fortigate-311b:-:::::::*
	cpe:2.3:h:fortinet:fortigate-620b:-:::::::*
	cpe:2.3:h:fortinet:fortigate-200b:-:::::::*

Information

Published : 2013-07-08 10:55

Updated : 2013-07-08 10:55

NVD link : CVE-2013-1414

Mitre link : CVE-2013-1414

JSON object : View

CWE

CWE-352

Cross-Site Request Forgery (CSRF)

Products Affected

fortinet

fortigate-5001a-sw
fortigate-60c
fortios
fortigate-3040b
fortigate-620b
fortigate-600c
fortigate-voice-80c
fortigate-50b
fortigate-80c
fortigaterugged-100c
fortigate-3240c
fortigate-800c
fortigate-300c
fortigate-5060
fortigate-310b
fortigate-200b
fortigate-1000c
fortigate-3950b
fortigate-3140b
fortigate-100d
fortigate-5001b
fortigate-5140b
fortigate-311b
fortigate-1240b
fortigate-3810a
fortigate-5020
fortigate-110c
fortigate-5101c
fortigate-20c
fortigate-40c

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.exploit-db.com/exploits/26528/", "name": "26528", "tags": ["Exploit"], "refsource": "EXPLOIT-DB"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Multiple cross-site request forgery (CSRF) vulnerabilities in Fortinet FortiOS on FortiGate firewall devices before 4.3.13 and 5.x before 5.0.2 allow remote attackers to hijack the authentication of administrators for requests that modify (1) settings or (2) policies, or (3) restart the device via a rebootme action to system/maintenance/shutdown."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-352"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2013-1414", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.1, "accessVector": "NETWORK", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "HIGH", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 4.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}}, "publishedDate": "2013-07-08T17:55Z", "configurations": {"nodes": [{"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:fortinet:fortios:5.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:fortinet:fortios:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "4.3.12"}, {"cpe23Uri": "cpe:2.3:o:fortinet:fortios:4.3.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-3040b:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-3240c:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-5001b:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-80c:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-40c:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-20c:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-110c:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-voice-80c:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-1240b:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-300c:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-5020:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-3140b:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-60c:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-600c:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-5001a-sw:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-310b:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-800c:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-100d:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-50b:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-3810a:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-1000c:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-5101c:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigaterugged-100c:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-3950b:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-5140b:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-5060:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-311b:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-620b:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:fortinet:fortigate-200b:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "operator": "AND", "cpe_match": []}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2013-07-08T17:55Z"}

5.1 /10