5 matches found
CVE-2018-9195
Use of a hardcoded cryptographic key in the FortiGuard services communication protocol may allow a Man in the middle with knowledge of the key to eavesdrop on and modify information URL/SPAM services in FortiOS 5.6, and URL/SPAM/AV services in FortiOS 6.0.; URL rating in FortiClient sent and...
Fortinet FortiClient < 6.2.2 Information Disclosure MitM (FG-IR-18-100) (macOS)
The remote macOS host is running a version of Fortinet FortiClient prior to 6.2.2. It is, therefore, affected by an information disclosure man-in-the-middle vulnerability in the FortiGuard services communication protocol due to the use of a hardcoded cryptographic key. A remote attacker with...
Fortinet FortiClient < 6.2.0 Information Disclosure MitM (FG-IR-18-100)
The remote host is running a version of Fortinet FortiClient prior to 6.2.0. It is, therefore, affected by an information disclosure man-in-the-middle vulnerability in the FortiGuard services communication protocol due to the use of a hardcoded cryptographic key. A remote attacker with knowledge ...
CVE-2018-9195
Use of a hardcoded cryptographic key in the FortiGuard services communication protocol may allow a Man in the middle with knowledge of the key to eavesdrop on and modify information URL/SPAM services in FortiOS 5.6, and URL/SPAM/AV services in FortiOS 6.0.; URL rating in FortiClient sent and...
CVE-2018-9195
The CVE-2018-9195 entry describes an information-disclosure MITM vulnerability caused by a hardcoded cryptographic key used in the FortiGuard service communication protocol. Affected products include FortiOS 5.6.x (before 5.6.12) and FortiOS 6.x (before 6.0.8), and FortiClient clients (Windows be...