CVE-2020-29012: [FortiSandbox] fsuis token does not expire after logout
First published: Tue Sep 07 2021(Updated: )
An insufficient session expiration vulnerability [CWE-613] in FortiSandbox may allow an attacker to reuse the unexpired admin user session IDs to gain information about other users configured on the device, should the attacker be able to obtain that session ID (via other, hypothetical attacks)
Credit: psirt@fortinet.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Fortinet FortiSandbox Firmware | <3.2.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID is CVE-2020-29012.
What is the severity rating of CVE-2020-29012?
The severity rating of CVE-2020-29012 is medium (5.3).
Which versions of FortiSandbox are affected by the vulnerability?
FortiSandbox versions 3.2.1 and below are affected.
How does the vulnerability in FortiSandbox allow an attacker to gain information about other users?
The vulnerability allows an attacker to reuse unexpired admin user session IDs, which can be used to gain information about other users configured on the device.
Is there a fix available for CVE-2020-29012?
Yes, upgrading to FortiSandbox version 3.2.2 or later will fix the vulnerability.
- agent/type
- agent/softwarecombine
- agent/author
- agent/weakness
- collector/fortiguard-psirt-latest
- source/FortiGuard
- alias/CVE-2020-29012
- collector/fortiguard-psirt
- agent/title
- agent/references
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/fortinet
- canonical/fortinet fortisandbox firmware