CVE-2020-12818: FortiGate fails to log traffic for Fortinet owned IP address range
First published: Thu Sep 24 2020(Updated: )
An insufficient logging vulnerability in FortiGate before 6.4.1 may allow the traffic from an unauthenticated attacker to Fortinet owned IP addresses to go unnoticed.
Credit: psirt@fortinet.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| FortiOS | <6.4.1 | |
| Fortinet FortiGate 1000D | ||
| Fortinet Fortigate 100e | ||
| Fortinet Fortigate 100F | ||
| Fortinet FortiGate 1100E | ||
| Fortinet FortiGate 1500D | ||
| Fortinet FortiGate 1800F | ||
| Fortinet Fortigate | ||
| Fortinet FortiGate 200E | ||
| Fortinet Fortigate 2200e | ||
| Fortinet Fortigate 3000D | ||
| Fortinet Fortigate 3300e | ||
| Fortinet Fortigate 3400e | ||
| Fortinet Fortigate 3600e | ||
| Fortinet Fortigate 3700D | ||
| Fortinet FortiGate 3960E | ||
| Fortinet Fortigate 3980e | ||
| Fortinet Fortigate-400e | ||
| Fortinet FortiGate 40F | ||
| Fortinet Fortigate 4200F | ||
| Fortinet Fortigate 5001D | ||
| Fortinet Fortigate 5001E | ||
| Fortinet Fortigate 5001E | ||
| Fortinet Fortigate 5053B | ||
| Fortinet Fortigate | ||
| Fortinet Fortigate 50e | ||
| Fortinet FortiGate 5144C | ||
| Fortinet Fortigate 600E | ||
| Fortinet FortiGate 60E | ||
| Fortinet Fortigate | ||
| Fortinet FortiGate 6300F | ||
| Fortinet FortiGate 6500F DC | ||
| Fortinet FortiGate 7040E | ||
| Fortinet Fortigate-7060e | ||
| Fortinet Fortigate 80E | ||
| Fortinet Fortigate |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-12818?
The severity of CVE-2020-12818 is characterized as a medium risk due to insufficient logging which could allow unauthorized traffic to go unnoticed.
How do I fix CVE-2020-12818?
To fix CVE-2020-12818, upgrade your FortiGate devices to FortiOS version 6.4.1 or later.
What impact does CVE-2020-12818 have on my system?
CVE-2020-12818 may allow an unauthenticated attacker to exploit unlogged traffic, potentially leading to undetected unauthorized access.
Who is affected by CVE-2020-12818?
CVE-2020-12818 affects FortiGate devices running FortiOS versions prior to 6.4.1.
Is CVE-2020-12818 actively exploited in the wild?
There is currently no widely reported evidence of active exploitation of CVE-2020-12818 in the wild.
- agent/type
- collector/fortiguard-psirt
- source/FortiGuard
- alias/CVE-2020-12818
- agent/author
- agent/title
- agent/severity
- agent/references
- agent/first-publish-date
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/fortinet
- canonical/fortios
- canonical/fortinet fortigate 1000d
- canonical/fortinet fortigate 100e
- canonical/fortinet fortigate 100f
- canonical/fortinet fortigate 1100e
- canonical/fortinet fortigate 1500d
- canonical/fortinet fortigate 1800f
- canonical/fortinet fortigate
- canonical/fortinet fortigate 200e
- canonical/fortinet fortigate 2200e
- canonical/fortinet fortigate 3000d
- canonical/fortinet fortigate 3300e
- canonical/fortinet fortigate 3400e
- canonical/fortinet fortigate 3600e
- canonical/fortinet fortigate 3700d
- canonical/fortinet fortigate 3960e
- canonical/fortinet fortigate 3980e
- canonical/fortinet fortigate-400e
- canonical/fortinet fortigate 40f
- canonical/fortinet fortigate 4200f
- canonical/fortinet fortigate 5001d
- canonical/fortinet fortigate 5001e
- canonical/fortinet fortigate 5053b
- canonical/fortinet fortigate 50e
- canonical/fortinet fortigate 5144c
- canonical/fortinet fortigate 600e
- canonical/fortinet fortigate 60e
- canonical/fortinet fortigate 6300f
- canonical/fortinet fortigate 6500f dc
- canonical/fortinet fortigate 7040e
- canonical/fortinet fortigate-7060e
- canonical/fortinet fortigate 80e