A use of hard-coded cryptographic key vulnerability in the SSLVPN of FortiOS before 7.0.1 may allow an attacker to retrieve the key by reverse engineering.
Advisories
Source ID Title
EUVD EUVD EUVD-2021-12929 A use of hard-coded cryptographic key vulnerability in the SSLVPN of FortiOS before 7.0.1 may allow an attacker to retrieve the key by reverse engineering.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Fri, 25 Oct 2024 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: fortinet

Published:

Updated: 2024-10-25T13:40:59.998Z

Reserved: 2021-01-25T00:00:00

Link: CVE-2021-26108

cve-icon Vulnrichment

Updated: 2024-08-03T20:19:20.065Z

cve-icon NVD

Status : Modified

Published: 2021-12-08T13:15:07.603

Modified: 2024-11-21T05:55:52.757

Link: CVE-2021-26108

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.