CVE-2015-1571

Name of the Vulnerable Software and Affected Versions FortiOS version 5.0 Patch 7 build 4457

Description The CAPWAP DTLS protocol implementation in FortiOS uses the same certificate and private key across different customers' installations. However, according to FG-IR-15-002, the Fortinet Factory certificate is unique to each device, which contradicts the initial statement. This discrepancy suggests confusion regarding the uniqueness of the certificate. If the certificate is indeed not unique, it could make it easier for man-in-the-middle attackers to spoof SSL servers by leveraging the Fortinet Factory certificate and private key.

Recommendations For FortiOS version 5.0 Patch 7 build 4457, consider disabling the use of the Fortinet Factory certificate and private key until a patch or clarification is available. However, given the contradiction in information, it's essential to consult official Fortinet resources for accurate guidance on mitigating potential risks associated with the CAPWAP DTLS protocol implementation. At the moment, there is no clear information about a newer version that contains a fix for this issue.