ghsa-57m7-2g72-pv8m
Vulnerability from github
Published
2022-03-02 00:00
Modified
2022-03-17 00:04
Severity
Details
A improper input validation in Fortinet FortiGate version 6.4.3 and below, version 6.2.5 and below, version 6.0.11 and below, version 5.6.13 and below allows attacker to disclose sensitive information via SNI Client Hello TLS packets.
{ "affected": [], "aliases": [ "CVE-2020-15936" ], "database_specific": { "cwe_ids": [ "CWE-668" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2022-03-01T19:15:00Z", "severity": "MODERATE" }, "details": "A improper input validation in Fortinet FortiGate version 6.4.3 and below, version 6.2.5 and below, version 6.0.11 and below, version 5.6.13 and below allows attacker to disclose sensitive information via SNI Client Hello TLS packets.", "id": "GHSA-57m7-2g72-pv8m", "modified": "2022-03-17T00:04:26Z", "published": "2022-03-02T00:00:18Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15936" }, { "type": "WEB", "url": "https://fortiguard.com/advisory/FG-IR-20-091" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "type": "CVSS_V3" } ] }
Loading...