Lucene search
FortinetCVELIST:CVE-2018-9194HistorySep 05, 2018 - 1:00 p.m.
CVE-2018-9194
2018-09-0513:00:00
fortinet
www.cve.org
8
A plaintext recovery of encrypted messages or a Man-in-the-middle (MiTM) attack on RSA PKCS #1 v1.5 encryption may be possible without knowledge of the server’s private key. Fortinet FortiOS 5.4.6 to 5.4.9, 6.0.0 and 6.0.1 are vulnerable by such attack under VIP SSL feature when CPx being used.
CNA Affected
[
{
"product": "FortiOS",
"vendor": "Fortinet, Inc.",
"versions": [
{
"status": "affected",
"version": "6.0.1, 6.0.0"
},
{
"status": "affected",
"version": "5.4.9, 5.4.8, 5.4.7, 5.4.6"
}
]
}
]Related
cve
cve
CVE-2018-9194
2018-09-05 13:29:00
prion
prion
Code injection
2018-09-05 13:29:00
nvd
nvd
CVE-2018-9194
2018-09-05 13:29:00
fortinet
fortinet
The ROBOT Attack - Return of Bleichenbacher's Oracle Threat
2018-08-27 00:00:00