CVE-2020-15938
MEDIUMFortiGate <6.2.5/<6.4.2 - Non-HTTP Traffic Bypasses Transparent Proxy Policy
Title source: manualDescription
When traffic other than HTTP/S (eg: SSH traffic, etc...) traverses the FortiGate in version below 6.2.5 and below 6.4.2 on port 80/443, it is not redirected to the transparent proxy policy for processing, as it doesn't have a valid HTTP header.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://fortiguard.com/advisory/FG-IR-20-172
Scores
CVSS v3
4.0
EPSS
0.0035
EPSS Percentile
57.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
Status
published
Products (1)
fortinet/fortios
< 6.2.5
Published
Mar 04, 2021
Tracked Since
Feb 18, 2026