{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-20T22:34:05.754","vulnerabilities":[{"cve":{"id":"CVE-2018-13376","sourceIdentifier":"psirt@fortinet.com","published":"2018-11-27T15:29:00.227","lastModified":"2024-11-21T03:46:59.020","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An uninitialized memory buffer leak exists in Fortinet FortiOS 5.6.1 to 5.6.3, 5.4.6 to 5.4.7, 5.2 all versions under web proxy's disclaimer response web pages, potentially causing sensitive data to be displayed in the HTTP response."},{"lang":"es","value":"Existe una fuga del búfer de memoria sin inicializar en Fortinet FortiOS, de la versión 5.6.1 a la 5.6.3, de la versión 5.4.6 a la 5.4.7 y en todas las versiones desde la 5.2 bajo las páginas web de renuncia de respuesta del proxy web, lo que podría provocar que los datos sensibles se muestren en la respuesta HTTP."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:N/A:N","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*","versionEndIncluding":"5.2.12","matchCriteriaId":"E87EA862-D58B-4C52-BFF0-54B8D01BC569"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*","versionStartIncluding":"5.4.6","versionEndIncluding":"5.4.7","matchCriteriaId":"4200DCE0-8A28-4E77-A687-E89C582B7D30"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*","versionStartIncluding":"5.6.1","versionEndIncluding":"5.6.3","matchCriteriaId":"15CA187D-7F6A-454C-9E95-EE61D578EC10"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/106036","source":"psirt@fortinet.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://fortiguard.com/advisory/FG-IR-18-325","source":"psirt@fortinet.com","tags":["Vendor Advisory"]},{"url":"https://herolab.usd.de/wp-content/uploads/sites/4/2018/12/usd20180031.txt","source":"psirt@fortinet.com","tags":["Exploit","Third Party Advisory"]},{"url":"http://www.securityfocus.com/bid/106036","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://fortiguard.com/advisory/FG-IR-18-325","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://herolab.usd.de/wp-content/uploads/sites/4/2018/12/usd20180031.txt","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]}]}}]}