An Improper Limitation of a Pathname to a Restricted Directory ("Path Traversal") in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.3 to 5.6.7 and 5.4.6 to 5.4.12 under SSL VPN web portal allows an unauthenticated malicious user to download system files via special crafted HTTP resource requests.
Do Some Magic :) Great research work by Devcore Security Team (@mehqq_ and @orange_8361) Attacking SSL VPN CVE-2018-13379: Pre-auth arbitrary file reading CVE-2018-13382: The magic backdoor
Dorks for Google, Shodan and BinaryEdge
State-sponsored advanced persistent threat (APT) groups are using flaws in outdated VPN technologies from Palo Alto Networks, Fortinet and Pulse Secure to carry out cyber attacks on targets in the United States and overseas, warned U.S. and U.K. officials.
The National Security Agency (NSA) issued a Cybersecurity Advisory Monday about the threats and offered mitigation suggestions, warning that multiple APT actors have weaponized three critical vulnerabilities first published in August–C...