FortiOS < 6.2.0 - Unauthenticated Sensitive Information Interception via LDAP Server Impersonation
A Default Configuration vulnerability in FortiOS may allow an unauthenticated attacker on the same subnet to intercept sensitive information by impersonating the LDAP server.