Users' VPN authentication credentials are unsafely encrypted in Fortinet FortiClient for Windows 5.6.0 and below versions, FortiClient for Mac OSX 5.6.0 and below versions and FortiClient SSLVPN Client for Linux 4.4.2335 and below versions, due to the use of a static encryption key and weak encryption algorithms.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/advisory/FG-IR-17-214 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2018-04-26T20:00:00Z
Updated: 2024-09-16T23:11:39.883Z
Reserved: 2017-12-11T00:00:00
Link: CVE-2017-17543
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-04-26T20:29:00.243
Modified: 2020-05-11T17:38:32.613
Link: CVE-2017-17543
Redhat
No data.