Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
FortiGate: ZebOS routing remote shell service enabled
Information
Severity
Severity
Critical
Family
Family
General
CVSSv2 Base
CVSSv2 Base
9.3
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
Solution Type
Solution Type
Vendor Patch
Created
Created
7 years ago
Modified
Modified
5 years ago
Summary
ZebOS routing remote shell service enabled
Insight
Insight
A remote attacker may access the internal ZebOS shell of FortiOS 5.2.3 without authentication on the HA dedicated management interface only. Only FortiGates configured with HA *and* with an enabled HA dedicated management interface are vulnerable.
Affected Software
Affected Software
FortiGate v5.2.3 only.
Detection Method
Detection Method
Open a connection to port 2650 and execute the `show version` command.
Solution
Solution
FortiOS 5.2.3 must be upgraded to FortiOS 5.2.4.