← Voltar para CVEs

CVE-2015-7361

N/A

Descricao

FortiOS 5.2.3, when configured to use High Availability (HA) and the dedicated management interface is enabled, does not require authentication for access to the ZebOS shell on the HA dedicated management interface, which allows remote attackers to obtain shell access via unspecified vectors.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado10/15/2015

Ultima modificacao4/12/2025

Fontenvd

Avistamentos honeypot0

Produtos afetados

fortinet:fortios

Fraquezas (CWE)

CWE-287

Referencias

http://fortiguard.com/advisory/zebos-routing-remote-shell-service-enabled(cve@mitre.org)

http://www.fortiguard.com/advisory/zebos-routing-remote-shell-service-enabled(cve@mitre.org)

http://www.securitytracker.com/id/1033093(cve@mitre.org)

http://fortiguard.com/advisory/zebos-routing-remote-shell-service-enabled(af854a3a-2127-422b-91ae-364da2661108)

http://www.fortiguard.com/advisory/zebos-routing-remote-shell-service-enabled(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitytracker.com/id/1033093(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.