PSIRT Advisories

FortiOS IKE VendorID version information disclosure


The FortiOS IKE packets which include the Vendor ID embed the FortiOS build version number.

Affected Products

FortiOS 5.0.0 to 5.4.4 and 5.6.0 versions.


Upgrade to FortiOS version 5.2.12, 5.4.5 or 5.6.1


Fortinet is pleased to thank independent researcher Alexis La Goutte for reporting this vulnerability under responsible disclosure.