Vulnerability
Fortilogger is a web-based logging and reporting application for Fortigate Firewalls that runs on Windows. FortiLogger is vulnerable to Arbitrary File Upload. This occurs when a “Content-Type: image/png’’ header is sent to Config/SaveUploadedHotspotLogoFile and then visiting Assets/temp/hotspot/img/logohotspot.asp. As validation of file extensions are not properly managed, an attacker can easily upload a malicious file under ‘Hotspot Settings’. The specially tailored request can be sent by the attacker for remote code execution.
Mitigation / Precaution
- In order to patch this vulnerability, please install the official patch made by the vendor available for supported, vulnerable instances.
- Provide proper validation for file extensions.
Written by
Experience the Beagle Security platform
Unlock one full penetration test and all Advanced plan features free for 10 days
