NVD
- Id
- 27018
- Name
- CVE-2015-5965
- Description
- The SSL-VPN feature in Fortinet FortiOS before 4.3.13 only checks the first byte of the TLS MAC in finished messages, which makes it easier for remote attackers to spoof encrypted content via a crafted MAC field.
- Reject
- CVSS Version
- 2
- CVSS Score
- 5
- Severity
- Medium
- CVSS Base Score
- 5
- CVSS Impact Subscore
- 2.9
- CVSS Exploit Subscore
- 10
- CVSS Vector
- (AV:N/AC:L/Au:N/C:N/I:P/A:N)
- Pub Date
- 2017-01-19
- Published
- 2015-08-11
- Modified Date
- 2016-12-23
- Seq
- 2015-5965