Vulnerabilities > Fortinet > Forticlient > 5.2.3.091
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-02-10 | CVE-2015-1570 | Cryptographic Issues vulnerability in Fortinet Forticlient 5.2.028/5.2.3.091 The Endpoint Control protocol implementation in Fortinet FortiClient 5.2.3.091 for Android and 5.2.028 for iOS does not validate certificates, which makes it easier for man-in-the-middle attackers to spoof servers via a crafted certificate. | 4.3 |
2015-02-02 | CVE-2015-1453 | Cryptographic Issues vulnerability in Fortinet Forticlient 5.2.3.091 The qm class in Fortinet FortiClient 5.2.3.091 for Android uses a hardcoded encryption key of FoRtInEt!AnDrOiD, which makes it easier for attackers to obtain passwords and possibly other sensitive data by leveraging the key to decrypt data in the Shared Preferences. | 5.0 |