Main Vulnerability Database Vulnerabilities #VU40173

Information disclosure in FortiOS - CVE-2015-5738

Published: July 26, 2016 / Updated: August 9, 2020

Vulnerability identifier: #VU40173

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2015-5738

CWE-ID: CWE-200

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Fortinet, Inc

Affected software:
FortiOS

Detailed vulnerability description

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS), makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra side-channel attack.

How to mitigate CVE-2015-5738

Install update from vendor's website.

Sources

http://fortiguard.com/advisory/rsa-crt-key-leak-under-certain-conditions
https://people.redhat.com/~fweimer/rsa-crt-leaks.pdf
https://support.f5.com/kb/en-us/solutions/public/k/91/sol91245485.html

Information disclosure in FortiOS - CVE-2015-5738

Detailed vulnerability description

How to mitigate CVE-2015-5738

Sources

Please verify you're human