Weak Cipher Vulnerability in FortiOS

Weak Cipher Vulnerability in FortiOS

CVE-2015-2323 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:P/A:N

FortiOS 5.0.x before 5.0.12 and 5.2.x before 5.2.4 supports anonymous, export, RC4, and possibly other weak ciphers when using TLS to connect to FortiGuard servers, which allows man-in-the-middle attackers to spoof TLS content by modifying packets.

Learn more about our Cis Benchmark Audit For Apple Ios.