Home

Description

An Improper Input Validation vulnerability in the SSL VPN portal of FortiOS versions 6.2.1 and below, and 6.0.6 and below may allow an unauthenticated remote attacker to crash the SSL VPN service by sending a crafted POST request.

PUBLISHED Reserved 2019-08-27 | Published 2019-11-27 | Updated 2024-10-25 | Assigner fortinet

Problem types

Denial of Service

Product status

FortiOS versions 6.2.1 and below
affected

FortiOS versions 6.0.6 and below
affected

References

fortiguard.com/advisory/FG-IR-19-236

fortiguard.com/advisory/FG-IR-19-236

cve.org (CVE-2019-15705)

nvd.nist.gov (CVE-2019-15705)

Download JSON