Users' VPN authentication credentials are unsafely encrypted in Fortinet FortiClient for Windows 5.6.0 and below versions, FortiClient for Mac OSX 5.6.0 and below versions and FortiClient SSLVPN Client for Linux 4.4.2335 and below versions, due to the use of a static encryption key and weak encryption algorithms.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/advisory/FG-IR-17-214 |
History
Fri, 25 Oct 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2018-04-26T20:00:00Z
Updated: 2024-10-25T14:32:33.452Z
Reserved: 2017-12-11T00:00:00
Link: CVE-2017-17543
Vulnrichment
Updated: 2024-08-05T20:51:32.155Z
NVD
Status : Modified
Published: 2018-04-26T20:29:00.243
Modified: 2024-11-21T03:18:08.213
Link: CVE-2017-17543
Redhat
No data.