FortiOS SSLVPN Vulnerability: Retrieval of Hard-Coded Cryptographic Key through Reverse Engineering

FortiOS SSLVPN Vulnerability: Retrieval of Hard-Coded Cryptographic Key through Reverse Engineering

CVE-2021-26108 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

A use of hard-coded cryptographic key vulnerability in the SSLVPN of FortiOS before 7.0.1 may allow an attacker to retrieve the key by reverse engineering.

Learn more about our Cis Benchmark Audit For Apple Ios.