CVE-2023-37935: Plain-text credentials in GET request via SSL VPN web portal
First published: Tue Oct 10 2023(Updated: )
A use of GET request method with sensitive query strings vulnerability [CWE-598] in the FortiOS SSL VPN component may allow an attacker to view plaintext passwords of remote services such as RDP or VNC, if the attacker is able to read the GET requests to those services (found in logs, referers, caches, etc...)
Credit: psirt@fortinet.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Fortinet FortiOS IPS Engine | >=7.0.0<=7.0.12 | |
| Fortinet FortiOS IPS Engine | >=7.2.0<=7.2.5 | |
| Fortinet FortiOS IPS Engine | =7.4.0 |
Remedy
Please upgrade to FortiOS version 7.4.1 or above Please upgrade to FortiOS version 7.2.6 or above Please upgrade to FortiOS version 7.0.13 or above
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2023-37935?
CVE-2023-37935 is a vulnerability in Fortinet FortiOS 7.0.0 - 7.0.12, 7.2.0 - 7.2.5 and 7.4.0 that allows an attacker to view plaintext passwords of remote services if they can read the GET requests to those services.
How does the CVE-2023-37935 vulnerability impact Fortinet FortiOS?
The CVE-2023-37935 vulnerability allows an attacker to view plaintext passwords of remote services in Fortinet FortiOS if they can read the GET requests to those services.
What is the severity level of CVE-2023-37935?
The severity level of CVE-2023-37935 is high with a severity value of 7.5.
Which versions of Fortinet FortiOS are affected by CVE-2023-37935?
Fortinet FortiOS versions 7.0.0 - 7.0.12, 7.2.0 - 7.2.5, and 7.4.0 are affected by CVE-2023-37935.
How can I fix the CVE-2023-37935 vulnerability in Fortinet FortiOS?
To fix the CVE-2023-37935 vulnerability, it is recommended to update Fortinet FortiOS to a version that is not affected by the vulnerability.
- agent/type
- agent/softwarecombine
- agent/remedy
- agent/weakness
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/fortiguard-psirt
- source/FortiGuard
- alias/CVE-2023-37935
- agent/references
- agent/title
- agent/severity
- agent/description
- agent/first-publish-date
- collector/fortiguard-psirt-latest
- agent/event
- agent/trending
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- agent/author
- vendor/fortinet
- canonical/fortinet fortios ips engine
- version/fortinet fortios ips engine/7.0.0
- version/fortinet fortios ips engine/7.0.12
- version/fortinet fortios ips engine/7.2.0
- version/fortinet fortios ips engine/7.2.5
- version/fortinet fortios ips engine/7.4.0