CVE-2021-24012

Summary

An improper following of a certificate's chain of trust vulnerability in FortiGate versions 6.4.0 to 6.4.4 may allow an LDAP user to connect to SSLVPN with any certificate that is signed by a trusted Certificate Authority.

Affected Software

VendorProductVersion RangeStatus
FortinetFortinet FortiOSFortiOS 6.4.0 to 6.4.4affected

Weaknesses

  • Impersonation

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References