CVE-2018-9194 — Observable Discrepancy in Fortinet Fortios

CWE-203 — Observable Discrepancy4 documents4 sources

Severity

5.9MEDIUMNVD

EPSS

0.2%

top 62.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Fortinet Fortios Fortinet INC Fortios

Timeline

PublishedSep 5

Latest updateMay 13

Description

A plaintext recovery of encrypted messages or a Man-in-the-middle (MiTM) attack on RSA PKCS #1 v1.5 encryption may be possible without knowledge of the server's private key. Fortinet FortiOS 5.4.6 to 5.4.9, 6.0.0 and 6.0.1 are vulnerable by such attack under VIP SSL feature when CPx being used.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 2.2 | Impact: 3.6

Affected Packages2 packages

▶NVDfortinet/fortios5.4.6 — 5.4.9+2

▶CVEListV5fortinet_inc/fortios5.4.9, 5.4.8, 5.4.7, 5.4.6, 6.0.1, 6.0.0+1

🔴Vulnerability Details

GHSA

GHSA-vpcr-5m3v-q2cf: A plaintext recovery of encrypted messages or a Man-in-the-middle (MiTM) attack on RSA PKCS #1 v1↗2022-05-13

▶

CVEList

CVE-2018-9194: A plaintext recovery of encrypted messages or a Man-in-the-middle (MiTM) attack on RSA PKCS #1 v1↗2018-09-05

▶

📋Vendor Advisories

Fortinet

A plaintext recovery of encrypted messages or a Man-in-the-middle (MiTM) attack on RSA PKCS #1 v1.5 encryption may be po...↗2018-09-05

▶