Vulnerability Database

290,020

Total vulnerabilities in the database

CVE-2015-5965

The SSL-VPN feature in Fortinet FortiOS before 4.3.13 only checks the first byte of the TLS MAC in finished messages, which makes it easier for remote attackers to spoof encrypted content via a crafted MAC field.

  • Published: Aug 11, 2015
  • Updated: Apr 13, 2023
  • CVE: CVE-2015-5965
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:P/A:N

CWEs:

Software From Fixed in
fortinet / fortios - 4.3.12.x