FortiWeb Authentication Bypass

MEDIUM (4.9) Patch Available
authentication-bypasscwe-836fortifwebfortinetpassword-hash

Threat Intelligence

Low Risk
EPSS Score: 0.02% chance of exploitation (percentile: 5%)
🔍 Detection Tools: None available in major open-source tools
⚔️ Exploit Availability: No public exploits found

How we test →

What is it?

Fortinet's FortiWeb is a web application firewall that protects against various threats. This vulnerability allows an attacker to bypass authentication using password hashes instead of passwords, potentially leading to unauthorized access to sensitive data and systems.

Am I affected?

You're affected if you use A use of password. Affected versions: 8.0.1, 7.4.10, 7.2.11, 7.6.5, 7.0.11 If you don't recognise this software, you're probably not affected.

Affected Products

Fortinet / FortiWeb

How to fix

  1. Upgrade to FortiWeb 8.0.2 or above from the official Fortinet website: https://support.fortinet.com/kb/DOC-12345
  2. If immediate upgrade isn't possible:
  3. Restrict network access to your FortiWeb instance (firewall it from the public internet)
  4. Audit admin account activity for suspicious access patterns
  5. Monitor for unauthorized token creation

References