exploitDog

CVE-2019-5587

Опубликовано: 04 июн. 2019

Источник: nvd

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

Lack of root file system integrity checking in Fortinet FortiOS VM application images all versions below 6.0.5 may allow attacker to implant malicious programs into the installing image by reassembling the image through specific methods.

Ссылки

http://www.securityfocus.com/bid/108628
Broken Link
https://fortiguard.com/advisory/FG-IR-19-017
Vendor Advisory
http://www.securityfocus.com/bid/108628
Broken Link
https://fortiguard.com/advisory/FG-IR-19-017
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*

Версия до 6.0.5 (исключая)

EPSS

Процентиль: 29%

0.00103

Низкий

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-345

Связанные уязвимости

GHSA-vh73-v9g2-4q7c

CVSS3: 6.5

github

больше 3 лет назад

Lack of root file system integrity checking in Fortinet FortiOS VM application images all versions below 6.0.5 may allow attacker to implant malicious programs into the installing image by reassembling the image through specific methods.

EPSS

Процентиль: 29%

0.00103

Низкий

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-345