An information disclosure vulnerability in Fortinet FortiOS 5.6.0, 5.4.4 and below versions allows attacker to get FortiOS version info by inspecting FortiOS IKE VendorID packets.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/100211 | Third Party Advisory VDB Entry |
https://fortiguard.com/advisory/FG-IR-17-073 | Vendor Advisory |
http://www.securityfocus.com/bid/100211 | Third Party Advisory VDB Entry |
https://fortiguard.com/advisory/FG-IR-17-073 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 03:24
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.securityfocus.com/bid/100211 - Third Party Advisory, VDB Entry | |
References | () https://fortiguard.com/advisory/FG-IR-17-073 - Vendor Advisory |
Information
Published : 2017-08-10 21:29
Updated : 2024-11-21 03:24
NVD link : CVE-2017-3130
Mitre link : CVE-2017-3130
CVE.ORG link : CVE-2017-3130
JSON object : View
Products Affected
fortinet
- fortios
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor