CVE-2018-1360

Name of the Vulnerable Software and Affected Versions FortiManager versions 5.2.0 through 5.2.7 FortiManager versions 5.4.0 and 5.4.1

Description The issue is related to the lack of protection for service data in Fortinet FortiManager. It may allow a remote attacker to obtain the administrator password by intercepting REST API JSON responses. This could be done by an unauthenticated attacker in a man-in-the-middle position.

Recommendations For FortiManager versions 5.2.0 through 5.2.7, update to a version that includes the necessary security fixes to prevent cleartext transmission of sensitive information. For FortiManager versions 5.4.0 and 5.4.1, apply the recommended configuration changes to secure the REST API JSON responses and prevent unauthorized access to sensitive data. As a temporary workaround, consider restricting access to the REST API endpoints to minimize the risk of exploitation.