CVE-2019-15704

Summary

A clear text storage of sensitive information vulnerability in FortiClient for Mac may allow a local attacker to read sensitive information logged in the console window when the user connects to an SSL VPN Gateway.

Affected Software

VendorProductVersion RangeStatus
FortinetFortiClient for Mac OSFortiClient for Mac OS 6.2.0affected
FortinetFortiClient for Mac OS6.0.7affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References