Details of VAR-201708-0342

ID

VAR-201708-0342

CVE

CVE-2015-3617

TITLE

Fortinet FortiManager Vulnerabilities related to authorization, permissions, and access control

Trust: 0.8

sources: JVNDB: JVNDB-2015-007773

DESCRIPTION

Fortinet FortiManager 5.0 before 5.0.11 and 5.2 before 5.2.2 allow local users to gain privileges via crafted CLI commands. Fortinet FortiManager Contains vulnerabilities related to authorization, permissions, and access control.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. FortiManager is prone to following security vulnerabilities: 1. A remote privilege-escalation vulnerability 2. An HTML-injection vulnerability 3. An SQL-injection vulnerability 4. A local privilege-escalation vulnerability 5. An arbitrary file-download vulnerability Exploiting these issues could allow an attacker to execute attacker-supplied HTML or script code in the browser of an unsuspecting user in the context of the affected site, steal cookie-based authentication credentials, compromise the application, access or modify data, exploit latent vulnerabilities in the underlying database, gain elevated privileges, or download arbitrary files from the web server and obtain potentially sensitive information. This may aid in other attacks. Fortinet FortiManager is a centralized network security management platform developed by Fortinet. The platform supports centralized management of any number of Fortinet devices, and can group devices into different management domains (ADOMs) to further simplify multi-device security deployment and management

Trust: 1.98

sources: NVD: CVE-2015-3617 // JVNDB: JVNDB-2015-007773 // BID: 74444 // VULHUB: VHN-81578

AFFECTED PRODUCTS

vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.2.1	Trust: 1.9
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.10	Trust: 1.9
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.9	Trust: 1.9
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.8	Trust: 1.9
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.7	Trust: 1.9
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.6	Trust: 1.9
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.5	Trust: 1.9
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.4	Trust: 1.9
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.3	Trust: 1.9
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.2.0	Trust: 1.6
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.2	Trust: 1.3
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.1	Trust: 1.3
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.0	Trust: 1.0
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.2.2	Trust: 0.8
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.11	Trust: 0.8
vendor:	fortinet	model:	fortimanager	scope:	lt	version:	5.2	Trust: 0.8
vendor:	fortinet	model:	fortimanager	scope:	lt	version:	5.0	Trust: 0.8
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.2	Trust: 0.3
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0	Trust: 0.3
vendor:	fortinet	model:	fortimanager	scope:	ne	version:	5.2.2	Trust: 0.3
vendor:	fortinet	model:	fortimanager	scope:	ne	version:	5.0.11	Trust: 0.3

sources: BID: 74444 // JVNDB: JVNDB-2015-007773 // CNNVD: CNNVD-201708-1013 // NVD: CVE-2015-3617

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2015-3617
value:	HIGH
Trust: 1.0
NVD:	CVE-2015-3617
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201708-1013
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-81578
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2015-3617
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-81578
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2015-3617
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-81578 // JVNDB: JVNDB-2015-007773 // CNNVD: CNNVD-201708-1013 // NVD: CVE-2015-3617

PROBLEMTYPE DATA

problemtype:

CWE-264

Trust: 1.9

sources: VULHUB: VHN-81578 // JVNDB: JVNDB-2015-007773 // NVD: CVE-2015-3617

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201708-1013

TYPE

permissions and access control

Trust: 0.6

sources: CNNVD: CNNVD-201708-1013

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-007773

PATCH

title:	FG-IR-15-011	url:	https://fortiguard.com/psirt/FG-IR-15-011	Trust: 0.8
title:	Fortinet FortiManager Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=74244	Trust: 0.6

sources: JVNDB: JVNDB-2015-007773 // CNNVD: CNNVD-201708-1013

EXTERNAL IDS

db:	NVD	id:	CVE-2015-3617	Trust: 2.8
db:	SECTRACK	id:	1032188	Trust: 1.7
db:	BID	id:	74444	Trust: 1.4
db:	JVNDB	id:	JVNDB-2015-007773	Trust: 0.8
db:	CNNVD	id:	CNNVD-201708-1013	Trust: 0.7
db:	NSFOCUS	id:	37450	Trust: 0.6
db:	VULHUB	id:	VHN-81578	Trust: 0.1

sources: VULHUB: VHN-81578 // BID: 74444 // JVNDB: JVNDB-2015-007773 // CNNVD: CNNVD-201708-1013 // NVD: CVE-2015-3617

REFERENCES

url:	https://fortiguard.com/psirt/fg-ir-15-011	Trust: 2.0
url:	http://www.securitytracker.com/id/1032188	Trust: 1.7
url:	http://www.securityfocus.com/bid/74444	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-3617	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3617	Trust: 0.8
url:	http://www.nsfocus.net/vulndb/37450	Trust: 0.6
url:	http://www.fortinet.com/products/fortimanager/	Trust: 0.3
url:	http://www.fortiguard.com/advisory/fg-ir-15-011/	Trust: 0.3

sources: VULHUB: VHN-81578 // BID: 74444 // JVNDB: JVNDB-2015-007773 // CNNVD: CNNVD-201708-1013 // NVD: CVE-2015-3617

CREDITS

Maksymilian Motyl and the ITN Security Team at Orange Polska

Trust: 0.3

sources: BID: 74444

SOURCES

db:	VULHUB	id:	VHN-81578
db:	BID	id:	74444
db:	JVNDB	id:	JVNDB-2015-007773
db:	CNNVD	id:	CNNVD-201708-1013
db:	NVD	id:	CVE-2015-3617

LAST UPDATE DATE

2024-08-14T14:11:58.511000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-81578	date:	2017-08-29T00:00:00
db:	BID	id:	74444	date:	2017-08-25T07:11:00
db:	JVNDB	id:	JVNDB-2015-007773	date:	2017-09-19T00:00:00
db:	CNNVD	id:	CNNVD-201708-1013	date:	2017-08-23T00:00:00
db:	NVD	id:	CVE-2015-3617	date:	2017-08-29T14:42:25.447

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-81578	date:	2017-08-22T00:00:00
db:	BID	id:	74444	date:	2015-04-16T00:00:00
db:	JVNDB	id:	JVNDB-2015-007773	date:	2017-09-19T00:00:00
db:	CNNVD	id:	CNNVD-201708-1013	date:	2017-08-23T00:00:00
db:	NVD	id:	CVE-2015-3617	date:	2017-08-22T15:29:00.290