The SSL-VPN feature in Fortinet FortiOS before 4.3.13 only checks the first byte of the TLS MAC in finished messages, which makes it easier for remote attackers to spoof encrypted content via a crafted MAC field.
CVSS v2.0 Score
5.0
/ 10.0
MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
Information
- Published
- 11 août 2015
- Updated
- 12 avr. 2025
- Status
- Deferred
- Source
- cve@mitre.org
Affected products
fortinet fortiosAll Fortinet FortiOS CVEs →
Versions : 4.3.12
Weaknesses (CWE)
CWE-20
References (10)
- http://www.fortiguard.com/advisory/FG-IR-15-016/Vendor Advisory
- http://www.fortiguard.com/advisory/FG-IR-15-016/Vendor Advisory
Similar CVEs
Other vulnerabilities of type CWE-20
Loading…
Monitor your products
Get automatic alerts for every new CVE affecting your equipment.