CVE-2016-8492

Summary

The implementation of an ANSI X9.31 RNG in Fortinet FortiGate allows attackers to gain unauthorized read access to data handled by the device via IPSec/TLS decryption.

Affected Software

VendorProductVersion RangeStatus
FortinetFortinet FortiGateBefore 5.0affected

Weaknesses

  • Disclosure of information

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References