Vulnerability Description
The default configuration of Fortinet Fortigate UTM appliances uses the same Certification Authority certificate and same private key across different customers' installations, which makes it easier for man-in-the-middle attackers to spoof SSL servers by leveraging the presence of the Fortinet_CA_SSLProxy certificate in a list of trusted root certification authorities.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fortinet | Fortigate-1000C | - |
| Fortinet | Fortigate-100D | - |
| Fortinet | Fortigate-110C | - |
| Fortinet | Fortigate-1240B | - |
| Fortinet | Fortigate-200B | - |
| Fortinet | Fortigate-20C | - |
| Fortinet | Fortigate-300C | - |
| Fortinet | Fortigate-3040B | - |
| Fortinet | Fortigate-310B | - |
| Fortinet | Fortigate-311B | - |
| Fortinet | Fortigate-3140B | - |
| Fortinet | Fortigate-3240C | - |
| Fortinet | Fortigate-3810A | - |
| Fortinet | Fortigate-3950B | - |
| Fortinet | Fortigate-40C | - |
| Fortinet | Fortigate-5001A-Sw | - |
| Fortinet | Fortigate-5001B | - |
| Fortinet | Fortigate-5020 | - |
| Fortinet | Fortigate-5060 | - |
| Fortinet | Fortigate-50B | - |
Related Weaknesses (CWE)
References
- http://osvdb.org/87048
- http://www.kb.cert.org/vuls/id/111708Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/56382Third Party AdvisoryVDB Entry
- http://osvdb.org/87048
- http://www.kb.cert.org/vuls/id/111708Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/56382Third Party AdvisoryVDB Entry
FAQ
What is CVE-2012-4948?
CVE-2012-4948 is a vulnerability with a CVSS score of 5.3 (MEDIUM). The default configuration of Fortinet Fortigate UTM appliances uses the same Certification Authority certificate and same private key across different customers' installations, which makes it easier f...
How severe is CVE-2012-4948?
CVE-2012-4948 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-4948?
Check the references section above for vendor advisories and patch information. Affected products include: Fortinet Fortigate-1000C, Fortinet Fortigate-100D, Fortinet Fortigate-110C, Fortinet Fortigate-1240B, Fortinet Fortigate-200B.