Main Vulnerability Database Vulnerabilities #VU60931

#VU60931 Information disclosure in FortiOS - CVE-2020-15936

Published: March 1, 2022

Vulnerability identifier: #VU60931

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2020-15936

CWE-ID: CWE-200

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
FortiOS

Software vendor:
Fortinet, Inc

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to excessive data output by the system via SNI Client Hello TLS packets. A remote attacker can send a specially crafted request to the system and gain access to sensitive information.

Remediation

Given that there is no systematic way to detect all exfiltration attempts and to exhaustively enumerate all possibilities offered by exfiltration channels, Fortinet has addressed the issue by releasing a set of signatures:

Python/SNICat.A!exploit
https://www.fortiguard.com/encyclopedia/virus/10069638
SNIcat.Data.Exfiltration.Tool
https://www.fortiguard.com/encyclopedia/ips/50952

External links

https://fortiguard.com/advisory/FG-IR-20-091