CVE-2016-7541
First published: Thu Mar 30 2017(Updated: )
Long lived sessions in Fortinet FortiGate devices with FortiOS 5.x before 5.4.0 could violate a security policy during IPS signature updates when the FortiGate's IPSengine is configured in flow mode. All FortiGate versions with IPS configured in proxy mode (the default mode) are not affected.
Credit: psirt@fortinet.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Fortinet FortiOS IPS Engine | =5.0.0 | |
| Fortinet FortiOS IPS Engine | =5.0.1 | |
| Fortinet FortiOS IPS Engine | =5.0.2 | |
| Fortinet FortiOS IPS Engine | =5.0.3 | |
| Fortinet FortiOS IPS Engine | =5.0.4 | |
| Fortinet FortiOS IPS Engine | =5.0.5 | |
| Fortinet FortiOS IPS Engine | =5.0.6 | |
| Fortinet FortiOS IPS Engine | =5.0.7 | |
| Fortinet FortiOS IPS Engine | =5.0.8 | |
| Fortinet FortiOS IPS Engine | =5.0.9 | |
| Fortinet FortiOS IPS Engine | =5.0.10 | |
| Fortinet FortiOS IPS Engine | =5.0.11 | |
| Fortinet FortiOS IPS Engine | =5.0.12 | |
| Fortinet FortiOS IPS Engine | =5.0.13 | |
| Fortinet FortiOS IPS Engine | =5.0.14 | |
| Fortinet FortiOS IPS Engine | =5.2.0 | |
| Fortinet FortiOS IPS Engine | =5.2.1 | |
| Fortinet FortiOS IPS Engine | =5.2.2 | |
| Fortinet FortiOS IPS Engine | =5.2.3 | |
| Fortinet FortiOS IPS Engine | =5.2.4 | |
| Fortinet FortiOS IPS Engine | =5.2.5 | |
| Fortinet FortiOS IPS Engine | =5.2.6 | |
| Fortinet FortiOS IPS Engine | =5.2.7 | |
| Fortinet FortiOS IPS Engine | =5.2.8 | |
| Fortinet FortiOS IPS Engine | =5.2.9 | |
| Fortinet FortiOS IPS Engine | =5.2.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2016-7541?
CVE-2016-7541 has a medium severity rating that could lead to security policy violations in affected FortiGate devices.
How do I fix CVE-2016-7541?
To fix CVE-2016-7541, update your FortiOS to a patched version later than 5.4.0.
Which FortiOS versions are affected by CVE-2016-7541?
CVE-2016-7541 affects FortiOS versions 5.0.0 through 5.2.10, specifically in flow mode configuration.
What is the risk of not fixing CVE-2016-7541?
Not fixing CVE-2016-7541 could potentially expose your network to security breaches due to improper IPS signature updates.
Is IPS configured in proxy mode safe from CVE-2016-7541?
Yes, IPS configured in proxy mode is not affected by CVE-2016-7541.
- agent/references
- agent/type
- agent/softwarecombine
- agent/author
- agent/severity
- agent/weakness
- agent/description
- agent/event
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/fortinet
- canonical/fortinet fortios ips engine
- version/fortinet fortios ips engine/5.0.0
- version/fortinet fortios ips engine/5.0.1
- version/fortinet fortios ips engine/5.0.2
- version/fortinet fortios ips engine/5.0.3
- version/fortinet fortios ips engine/5.0.4
- version/fortinet fortios ips engine/5.0.5
- version/fortinet fortios ips engine/5.0.6
- version/fortinet fortios ips engine/5.0.7
- version/fortinet fortios ips engine/5.0.8
- version/fortinet fortios ips engine/5.0.9
- version/fortinet fortios ips engine/5.0.10
- version/fortinet fortios ips engine/5.0.11
- version/fortinet fortios ips engine/5.0.12
- version/fortinet fortios ips engine/5.0.13
- version/fortinet fortios ips engine/5.0.14
- version/fortinet fortios ips engine/5.2.0
- version/fortinet fortios ips engine/5.2.1
- version/fortinet fortios ips engine/5.2.2
- version/fortinet fortios ips engine/5.2.3
- version/fortinet fortios ips engine/5.2.4
- version/fortinet fortios ips engine/5.2.5
- version/fortinet fortios ips engine/5.2.6
- version/fortinet fortios ips engine/5.2.7
- version/fortinet fortios ips engine/5.2.8
- version/fortinet fortios ips engine/5.2.9
- version/fortinet fortios ips engine/5.2.10