File Exposure Vulnerability in Fortinet FortiManager Products
CVE-2015-3614

7.5HIGH

Key Information:

Vendor

Fortinet
Status
Fortimanager Firmware
Vendor
CVE Published:
11 August 2017

What is CVE-2015-3614?

A vulnerability exists in Fortinet's FortiManager product that allows remote attackers to gain unauthorized access to arbitrary files. This issue affects specific versions of FortiManager 5.0.x and 5.2.x, enabling exploitation methods that involve an unspecified flaw. Attackers could potentially leverage this vulnerability to compromise sensitive information and increase their access level within an affected system.

References

http://www.securityfocus.com/bid/74444
vdb-entryx_refsource_BID
https://fortiguard.com/psirt/FG-IR-15-011
x_refsource_CONFIRM
http://www.securitytracker.com/id/1032188
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.