VYPR
Medium severity5.9NVD Advisory· Published Sep 5, 2018· Updated Jun 17, 2026

CVE-2018-9194

CVE-2018-9194

Description

A plaintext recovery of encrypted messages or a Man-in-the-middle (MiTM) attack on RSA PKCS #1 v1.5 encryption may be possible without knowledge of the server's private key. Fortinet FortiOS 5.4.6 to 5.4.9, 6.0.0 and 6.0.1 are vulnerable by such attack under VIP SSL feature when CPx being used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Fortinet/Fortiosllm-fuzzy2 versions
    5.4.6 - 5.4.9, 6.0.0, 6.0.1+ 1 more
    • (no CPE)range: 5.4.6 - 5.4.9, 6.0.0, 6.0.1
    • (no CPE)range: 6.0.1, 6.0.0

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.