CVE-2018-9185

Name of the Vulnerable Software and Affected Versions: FortiOS versions 6.0.0 and below

Description: An information disclosure issue in FortiOS reveals a user's web portal login credentials in a Javascript file sent to the client-side when pages bookmarked in the web portal use the Single Sign-On feature. This could potentially allow a remote attacker to disclose user credentials if additional vulnerabilities, such as session handling, access control, or cross-site scripting issues, are discovered in the SSL-VPN web portal or in the applications within, or in case of client-side vulnerabilities, in the user's browser.

Recommendations: For FortiOS versions 6.0.0 and below, consider disabling the Single Sign-On feature in the web portal as a temporary workaround until a patch is available. Restrict access to the SSL-VPN web portal to minimize the risk of exploitation. Avoid using the bookmark feature in the web portal for pages that use Single Sign-On until the issue is resolved.