alert.md update

2020-11-25 17:48:45 +01:00 · 2020-11-25 17:48:45 +01:00 · 373118450f
--- a/CVE_VULN_FEED/CVE-2018-13379-fortinet_ssl_vpn/alert_text.md
+++ b/CVE_VULN_FEED/CVE-2018-13379-fortinet_ssl_vpn/alert_text.md
@ -1,24 +1,29 @@
 Date: 2020-11-23

-a critical vuln exists in []
+A List of 49.000 vulnerable FortiGate-VPN-gateways
+has been released on 2020-11-22 [1]
+3 days later, an archive with credentials
+for that IP-list has been released in one
+of the leak-forums [2]
+
+a short vulnscan by a partner of us 
+found 45k of the original list still vulnerable
+ 


-CVE       : CVE-2020-
-Vendor    :
-Product   : 
-CPE       :
-BaseScore : 
-Vector    : 
+CVE       : CVE-2018-13379
+Vendor    : Fortinet
+Product   : Fortinet SSL VPN 

 Patches   : available
-Exploits  : unknown
+Exploits  : yes


 we found various IPs in your ORG/ASN,
 matching criteria for possible vulnerable systems


-False-Positive-Level:
+False-Positive-Level: low


 please find a list of affected IPs below
@ -26,9 +31,9 @@ and more information on that problem here:

 References:

- NIST: 
- LINK
+1 - https://www.bleepingcomputer.com/news/security/hacker-posts-exploits-for-over-49-000-vulnerable-fortinet-vpns/
+2 - https://twitter.com/Bank_Security/status/1331376128519528450 



-    
+