Fortinet FortiClient - Lack of client-side certificate validation in ZTNA service (FG-IR-22-282)

high Nessus Plugin ID 206885

Version 1.3

Oct 28, 2024, 10:30 PM

  • CVSS metrics ("Cvssv4 score" set to 0.0)
  • CVSSv2 severity (based on None, severity decreased from "High" to "Low")
  • Plugin metadata

Plugin Feed: 202410282230

Version 1.2

Sep 23, 2024, 7:12 AM

  • CVSS metrics ("CVSSv2 score" set to 7.6)
  • CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C")
  • CVSS metrics ("CVSSv3 score" set to 8.1)
  • CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H")
  • CVSSv2 severity (based on CVE-2024-31489, severity increased from "Medium" to "High")
  • CVSSv3 severity (based on None, severity increased from "Medium" to "High")

Plugin Feed: 202409230712

Version 1.1

Sep 10, 2024, 9:34 PM

  • New

Plugin Feed: 202409102134

* Changelogs are generally available for changes made after Nov 1, 2022