2017-10-16 12:31:07 -04:00
{
2019-03-17 22:39:26 +00:00
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org" ,
"ID" : "CVE-2015-1453" ,
"STATE" : "PUBLIC"
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a" ,
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
} ,
"vendor_name" : "n/a"
}
]
}
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
"description" : {
"description_data" : [
2017-10-16 12:31:07 -04:00
{
2019-03-17 22:39:26 +00:00
"lang" : "eng" ,
"value" : "The qm class in Fortinet FortiClient 5.2.3.091 for Android uses a hardcoded encryption key of FoRtInEt!AnDrOiD, which makes it easier for attackers to obtain passwords and possibly other sensitive data by leveraging the key to decrypt data in the Shared Preferences."
2017-10-16 12:31:07 -04:00
}
2019-03-17 22:39:26 +00:00
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "n/a"
}
]
}
]
} ,
"references" : {
"reference_data" : [
{
"name" : "http://www.security-assessment.com/files/documents/advisory/Fortinet_FortiClient_Multiple_Vulnerabilities.pdf" ,
"refsource" : "MISC" ,
"url" : "http://www.security-assessment.com/files/documents/advisory/Fortinet_FortiClient_Multiple_Vulnerabilities.pdf"
} ,
{
"name" : "20150129 Fortinet FortiClient Multiple Vulnerabilities" ,
"refsource" : "FULLDISC" ,
"url" : "http://seclists.org/fulldisclosure/2015/Jan/124"
} ,
{
"name" : "72383" ,
"refsource" : "BID" ,
"url" : "http://www.securityfocus.com/bid/72383"
}
]
}
}
