2 matches found
CVE-2017-14184
The CVE-2017-14184 vulnerability affects Fortinet FortiClient components: Windows FortiClient 5.6.0 and below, Mac FortiClient 5.6.0 and below, and FortiClient SSLVPN Client for Linux 4.4.2334 and below. The root cause is insecure storage locations used to house VPN credentials, allowing regular ...
Fortinet FortiClient VPN Credential Disclosure Vulnerability
FortiClient stores the VPN authentication credentials in a configuration file on Linux or Mac OSX or in registry on Windows. The credentials are encrypted but can still be recovered since the decryption key is hardcoded in the program and the same on all installations. Above all, the aforemention...