Remote Access Vulnerability in FortiBalancer 400, 1000, 2000, and 3000 by Fortinet
CVE-2014-2721

8.8HIGH

Key Information:

Vendor: Fortinet
Status: Fortibalancer 400 Firmware
Vendor: CVE Published:; 19 March 2020

Summary

A configuration error in FortiBalancer devices, specifically models 400, 1000, 2000, and 3000, has been identified as a remote access vulnerability. This issue could potentially allow an unauthorized user to acquire privileged access through SSH, compromising the security of these affected systems. It's crucial for organizations using FortiBalancer solutions to apply necessary mitigations and updates to protect their networks from exploitation.

References

https://fortiguard.com/advisory/FG-IR-14-010

x_refsource_CONFIRM

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 19, 2020
Vulnerability Reserved
Apr 1, 2014