Vulnerability Database

311,379

Total vulnerabilities in the database

CVE-2020-15933

A exposure of sensitive information to an unauthorized actor in Fortinet FortiMail versions 6.0.9 and below, FortiMail versions 6.2.4 and below FortiMail versions 6.4.1 and 6.4.0 allows attacker to obtain potentially sensitive software-version information via client-side resources inspection.

  • Published: Jan 5, 2022
  • Updated: Nov 16, 2025
  • CVE: CVE-2020-15933
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.3
  • AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

Software From Fixed in
fortinet / fortimail 6.2.0 6.2.0.x
fortinet / fortimail 6.4.1 6.4.1.x
fortinet / fortimail 6.4.0 6.4.0.x
fortinet / fortimail 6.2.1 6.2.1.x
fortinet / fortimail 6.2.2 6.2.2.x
fortinet / fortimail 6.2.3 6.2.3.x
fortinet / fortimail 6.2.4 6.2.4.x
fortinet / fortimail - 6.0.9.x