An improper following of a certificate's chain of trust vulnerability in FortiGate versions 6.4.0 to 6.4.4 may allow an LDAP user to connect to SSLVPN with any certificate that is signed by a trusted Certificate Authority.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/advisory/FG-IR-21-018 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2021-06-02T12:42:19
Updated: 2024-08-03T19:14:10.119Z
Reserved: 2021-01-13T00:00:00
Link: CVE-2021-24012
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-06-02T13:15:12.673
Modified: 2021-06-14T14:56:53.057
Link: CVE-2021-24012
Redhat
No data.