CVE-2018-9194

EUVD-2018-20791
A plaintext recovery of encrypted messages or a Man-in-the-middle (MiTM) attack on RSA PKCS #1 v1.5 encryption may be possible without knowledge of the server's private key. Fortinet FortiOS 5.4.6 to 5.4.9, 6.0.0 and 6.0.1 are vulnerable by such attack under VIP SSL feature when CPx being used.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 38%
Affected Products (NVD)
VendorProductVersion
fortinetfortios
5.4.6 ≤
𝑥
≤ 5.4.9
fortinetfortios
6.0.0
fortinetfortios
6.0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://fortiguard.com/advisory/FG-IR-17-302
https://robotattack.org/
https://www.kb.cert.org/vuls/id/144389
https://fortiguard.com/advisory/FG-IR-17-302
https://robotattack.org/
https://www.kb.cert.org/vuls/id/144389