Unrated severityNVD Advisory· Published Feb 2, 2015· Updated May 6, 2026

CVE-2015-1453

Description

The qm class in Fortinet FortiClient 5.2.3.091 for Android uses a hardcoded encryption key of FoRtInEt!AnDrOiD, which makes it easier for attackers to obtain passwords and possibly other sensitive data by leveraging the key to decrypt data in the Shared Preferences.

Affected products

Fortinet/Forticlient
cpe:2.3:a:fortinet:forticlient:*:*:*:*:*:android:*:*
Range: <=5.2.3.091

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

seclists.org/fulldisclosure/2015/Jan/124nvdExploit
www.security-assessment.com/files/documents/advisory/Fortinet_FortiClient_Multiple_Vulnerabilities.pdfnvdExploit
www.securityfocus.com/bid/72383nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000