CVE-2013-4669: CVE-2013-4669

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2013-4669

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

FortiClient before 4.3.5.472 on Windows, before 4.0.3.134 on Mac OS X, and before 4.0 on Android; FortiClient Lite before 4.3.4.461 on Windows; FortiClient Lite 2.0 through 2.0.0223 on Android; and FortiClient SSL VPN before 4.0.2258 on Linux proceed with an SSL session after determining that the server's X.509 certificate is invalid, which allows man-in-the-middle attackers to obtain sensitive information by leveraging a password transmission that occurs before the user warning about the certificate problem.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Fortinet FortiClient VPN客户端SSL证书验证安全绕过漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Fortinet FortiClient、FortiClient Lite和FortiClient SSL VPN都是美国飞塔（Fortinet）公司的产品。FortiClient是一套为终端提供安全的软件解决方案，它提供IPsec和SSL 加密、广域网优化、终端合规和双因子认证等功能。FortiClient Lite是一款免费的反病毒软件，该软件提供恶意软件检测、实时防护、家长控制、网页过滤等功能。FortiClient SSL VPN是FortiClient产品中的集成软件，主要提供虚拟专用网技术。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2013-4669

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2013-4669

Please Login to view more intelligence information

🔗 http://www.fortiguard.com/advisory/Potential-Man-In-The-Middle-Vulnerability-in-FortiClient-VPN/x_refsource_CONFIRM
🔗 http://objectif-securite.ch/forticlient_bulletin.phpx_refsource_MISC
🔗 http://www.securityfocus.com/bid/59604vdb-entryx_refsource_BID
🔗 http://archives.neohapsis.com/archives/fulldisclosure/2013-05/0001.htmlmailing-listx_refsource_FULLDISC
https://nvd.nist.gov/vuln/detail/CVE-2013-4669

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2013-4669

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2013-4669

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2013-4669

III. Intelligence Information for CVE-2013-4669

IV. Related Vulnerabilities

V. Comments for CVE-2013-4669

Leave a comment