Information disclosure in FortiOS - CVE-2020-15936
Published: March 1, 2022
FortiOS
Detailed vulnerability description
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to excessive data output by the system via SNI Client Hello TLS packets. A remote attacker can send a specially crafted request to the system and gain access to sensitive information.
How to mitigate CVE-2020-15936
Given that there is no systematic way to detect all exfiltration attempts and to exhaustively enumerate all possibilities offered by exfiltration channels, Fortinet has addressed the issue by releasing a set of signatures:
-
Python/SNICat.A!exploit
https://www.fortiguard.com/encyclopedia/virus/10069638 -
SNIcat.Data.Exfiltration.Tool
https://www.fortiguard.com/encyclopedia/ips/50952