Fortinet FortiOS SSL VPN Web Portal Host Header Redirection Vulnerability

Fortinet FortiOS SSL VPN Web Portal Host Header Redirection Vulnerability

CVE-2018-13384 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:N

A Host Header Redirection vulnerability in Fortinet FortiOS all versions below 6.0.5 under SSL VPN web portal allows a remote attacker to potentially poison HTTP cache and subsequently redirect SSL VPN web portal users to arbitrary web domains.

Learn more about our Cis Benchmark Audit For Apple Ios.