Details of VAR-201702-0119

ID

VAR-201702-0119

CVE

CVE-2016-8495

TITLE

Fortinet FortiManager Vulnerabilities in authentication information incomplete

Trust: 0.8

sources: JVNDB: JVNDB-2016-007804

DESCRIPTION

An improper certificate validation vulnerability in Fortinet FortiManager 5.0.6 through 5.2.7 and 5.4.0 through 5.4.1 allows remote attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack via the Fortisandbox devices probing feature. FortiManager is prone to an information-disclosure vulnerability. An attacker can exploit this issue to obtain potentially sensitive information. Information obtained may aid in further attacks. FortiManager 5.0.6 through 5.2.7 and 5.4.0 through 5.4.1 are vulnerable. Fortinet FortiManager is a centralized network security management platform developed by Fortinet. The platform supports centralized management of any number of Fortinet devices, and can group devices into different management domains (ADOMs) to further simplify multi-device security deployment and management. A security vulnerability exists in Fortinet FortiManager due to the program not properly validating TLS certificates

Trust: 1.98

sources: NVD: CVE-2016-8495 // JVNDB: JVNDB-2016-007804 // BID: 96157 // VULHUB: VHN-97315

AFFECTED PRODUCTS

vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.4.1	Trust: 1.9
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.9	Trust: 1.9
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.8	Trust: 1.9
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.7	Trust: 1.9
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.6	Trust: 1.9
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.4.0	Trust: 1.6
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.5	Trust: 1.6
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.4	Trust: 1.6
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.10	Trust: 1.6
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.3	Trust: 1.6
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.2.7	Trust: 1.3
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.2.6	Trust: 1.3
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.2.2	Trust: 1.3
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.2.1	Trust: 1.3
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.2.4	Trust: 1.3
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.2.3	Trust: 1.3
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.11	Trust: 1.0
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.2.0	Trust: 1.0
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.0.6 to 5.2.7	Trust: 0.8
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.4.0 to 5.4.1	Trust: 0.8
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.4	Trust: 0.3
vendor:	fortinet	model:	fortimanager	scope:	eq	version:	5.2.5	Trust: 0.3
vendor:	fortinet	model:	fortimanager	scope:	ne	version:	5.4.2	Trust: 0.3
vendor:	fortinet	model:	fortimanager	scope:	ne	version:	5.2.8	Trust: 0.3

sources: BID: 96157 // JVNDB: JVNDB-2016-007804 // NVD: CVE-2016-8495 // CNNVD: CNNVD-201702-474

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD:	CVE-2016-8495
value:	HIGH
Trust: 1.8
CNNVD:	CNNVD-201702-474
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-97315
value:	MEDIUM
Trust: 0.1

NVD:
severity:	MEDIUM
baseScore:	5.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	4.9
acInsufInfo:	FALSE
obtainAllPrivilege:	FALSE
obtainUserPrivilege:	FALSE
obtainOtherPrivilege:	FALSE
userInteractionRequired:	FALSE
version:	2.0
Trust: 1.0
NVD:	CVE-2016-8495
severity:	MEDIUM
baseScore:	5.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
VULHUB:	VHN-97315
severity:	MEDIUM
baseScore:	5.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

NVD:
baseSeverity:	HIGH
baseScore:	7.4
vectorString:	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
attackVector:	NETWORK
attackComplexity:	HIGH
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	NONE
exploitabilityScore:	2.2
impactScore:	5.2
version:	3.0
Trust: 1.0
NVD:	CVE-2016-8495
baseSeverity:	HIGH
baseScore:	7.4
vectorString:	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
attackVector:	NETWORK
attackComplexity:	HIGH
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: VULHUB: VHN-97315 // JVNDB: JVNDB-2016-007804 // NVD: CVE-2016-8495 // CNNVD: CNNVD-201702-474

PROBLEMTYPE DATA

problemtype:

CWE-200

Trust: 1.9

sources: VULHUB: VHN-97315 // JVNDB: JVNDB-2016-007804 // NVD: CVE-2016-8495

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201702-474

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201702-474

CONFIGURATIONS

sources: NVD: CVE-2016-8495

PATCH

title:	FortiManager TLS certificate validation failure	url:	https://fortiguard.com/advisory/fg-ir-16-055	Trust: 0.8
title:	Fortinet FortiManager Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=67763	Trust: 0.6

sources: JVNDB: JVNDB-2016-007804 // CNNVD: CNNVD-201702-474

EXTERNAL IDS

db:	NVD	id:	CVE-2016-8495	Trust: 2.8
db:	BID	id:	96157	Trust: 1.4
db:	SECTRACK	id:	1037805	Trust: 1.1
db:	JVNDB	id:	JVNDB-2016-007804	Trust: 0.8
db:	CNNVD	id:	CNNVD-201702-474	Trust: 0.7
db:	VULHUB	id:	VHN-97315	Trust: 0.1

sources: VULHUB: VHN-97315 // BID: 96157 // JVNDB: JVNDB-2016-007804 // NVD: CVE-2016-8495 // CNNVD: CNNVD-201702-474

REFERENCES

url:	https://fortiguard.com/advisory/fg-ir-16-055	Trust: 2.0
url:	http://www.securityfocus.com/bid/96157	Trust: 1.1
url:	http://www.securitytracker.com/id/1037805	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-8495	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-8495	Trust: 0.8
url:	http://www.fortinet.com/products/fortimanager/	Trust: 0.3
url:	http://www.fortinet.com/	Trust: 0.3

sources: VULHUB: VHN-97315 // BID: 96157 // JVNDB: JVNDB-2016-007804 // NVD: CVE-2016-8495 // CNNVD: CNNVD-201702-474

CREDITS

AirBus security team

Trust: 0.3

sources: BID: 96157

SOURCES

db:	VULHUB	id:	VHN-97315
db:	BID	id:	96157
db:	JVNDB	id:	JVNDB-2016-007804
db:	NVD	id:	CVE-2016-8495
db:	CNNVD	id:	CNNVD-201702-474

LAST UPDATE DATE

2023-12-18T12:04:41.214000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-97315	date:	2017-07-25T00:00:00
db:	BID	id:	96157	date:	2017-03-07T10:02:00
db:	JVNDB	id:	JVNDB-2016-007804	date:	2017-03-17T00:00:00
db:	NVD	id:	CVE-2016-8495	date:	2017-07-25T01:29:03.357
db:	CNNVD	id:	CNNVD-201702-474	date:	2017-02-14T00:00:00

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-97315	date:	2017-02-13T00:00:00
db:	BID	id:	96157	date:	2017-02-08T00:00:00
db:	JVNDB	id:	JVNDB-2016-007804	date:	2017-03-17T00:00:00
db:	NVD	id:	CVE-2016-8495	date:	2017-02-13T15:59:00.167
db:	CNNVD	id:	CNNVD-201702-474	date:	2017-02-14T00:00:00