Lucene search

[email protected]NVD:CVE-2012-4948

HistoryNov 14, 2012 - 12:30 p.m.

CVE-2012-4948

2012-11-1412:30:59

CWE-295

[email protected]

web.nvd.nist.gov

CVSS2

5.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:H/Au:N/C:C/I:P/A:N

AI Score

6.3

Confidence

Low

EPSS

0.001

Percentile

26.8%

JSON

The default configuration of Fortinet Fortigate UTM appliances uses the same Certification Authority certificate and same private key across different customers’ installations, which makes it easier for man-in-the-middle attackers to spoof SSL servers by leveraging the presence of the Fortinet_CA_SSLProxy certificate in a list of trusted root certification authorities.

Affected configurations

Nvd

Node

fortinetfortigate-1000cMatch-

fortinetfortigate-100dMatch-

fortinetfortigate-110cMatch-

fortinetfortigate-1240bMatch-

fortinetfortigate-200bMatch-

fortinetfortigate-20cMatch-

fortinetfortigate-300cMatch-

fortinetfortigate-3040bMatch-

fortinetfortigate-310bMatch-

fortinetfortigate-311bMatch-

fortinetfortigate-3140bMatch-

fortinetfortigate-3240cMatch-

fortinetfortigate-3810aMatch-

fortinetfortigate-3950bMatch-

fortinetfortigate-40cMatch-

fortinetfortigate-5001a-swMatch-

fortinetfortigate-5001bMatch-

fortinetfortigate-5020Match-

fortinetfortigate-5060Match-

fortinetfortigate-50bMatch-

fortinetfortigate-5101cMatch-

fortinetfortigate-5140bMatch-

fortinetfortigate-600cMatch-

fortinetfortigate-60cMatch-

fortinetfortigate-620bMatch-

fortinetfortigate-800cMatch-

fortinetfortigate-80cMatch-

fortinetfortigate-voice-80cMatch-

fortinetfortigaterugged-100cMatch-

VendorProductVersionCPE
fortinetfortigate-1000c-cpe:2.3:h:fortinet:fortigate-1000c:-:*:*:*:*:*:*:*
fortinetfortigate-100d-cpe:2.3:h:fortinet:fortigate-100d:-:*:*:*:*:*:*:*
fortinetfortigate-110c-cpe:2.3:h:fortinet:fortigate-110c:-:*:*:*:*:*:*:*
fortinetfortigate-1240b-cpe:2.3:h:fortinet:fortigate-1240b:-:*:*:*:*:*:*:*
fortinetfortigate-200b-cpe:2.3:h:fortinet:fortigate-200b:-:*:*:*:*:*:*:*
fortinetfortigate-20c-cpe:2.3:h:fortinet:fortigate-20c:-:*:*:*:*:*:*:*
fortinetfortigate-300c-cpe:2.3:h:fortinet:fortigate-300c:-:*:*:*:*:*:*:*
fortinetfortigate-3040b-cpe:2.3:h:fortinet:fortigate-3040b:-:*:*:*:*:*:*:*
fortinetfortigate-310b-cpe:2.3:h:fortinet:fortigate-310b:-:*:*:*:*:*:*:*
fortinetfortigate-311b-cpe:2.3:h:fortinet:fortigate-311b:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
fortinet	fortigate-1000c	-	cpe:2.3:h:fortinet:fortigate-1000c:-:::::::*
fortinet	fortigate-100d	-	cpe:2.3:h:fortinet:fortigate-100d:-:::::::*
fortinet	fortigate-110c	-	cpe:2.3:h:fortinet:fortigate-110c:-:::::::*
fortinet	fortigate-1240b	-	cpe:2.3:h:fortinet:fortigate-1240b:-:::::::*
fortinet	fortigate-200b	-	cpe:2.3:h:fortinet:fortigate-200b:-:::::::*
fortinet	fortigate-20c	-	cpe:2.3:h:fortinet:fortigate-20c:-:::::::*
fortinet	fortigate-300c	-	cpe:2.3:h:fortinet:fortigate-300c:-:::::::*
fortinet	fortigate-3040b	-	cpe:2.3:h:fortinet:fortigate-3040b:-:::::::*
fortinet	fortigate-310b	-	cpe:2.3:h:fortinet:fortigate-310b:-:::::::*
fortinet	fortigate-311b	-	cpe:2.3:h:fortinet:fortigate-311b:-:::::::*