"POODLE has friends" vulnerability Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-15-016 Final 1 1 2015-07-15T00:00:00 Current version 2015-07-15T00:00:00 2015-07-15T00:00:00 The SSL-VPN feature of FortiOS 4.3.12 and lower only checks the first byte of the TLS MAC in the finished message. An attacker may intercept encrypted packets in transit and modifying their contents by changing the middle or the end of the MAC field in the TLS finished message. Man in the middle FortiOS 4.3.12 and lower. Customers using the SSL-VPN feature and running FortiOS<= 4.3.12 must upgrade to FortiOS 4.3.13 / 5.0.x / 5.2.x. https://fortiguard.fortinet.com/psirt/FG-IR-15-016 "POODLE has friends" vulnerability https://vivaldi.net/en-US/blogs/entry/the-poodle-has-friends https://vivaldi.net/en-US/blogs/entry/the-poodle-has-friends Thanks to Yngve N. Pettersen for working with us to help protect customers. https://fortiguard.fortinet.com/psirt/FG-IR-15-016 "POODLE has friends" vulnerability Reference> https://vivaldi.net/en-US/blogs/entry/the-poodle-has-friends https://vivaldi.net/en-US/blogs/entry/the-poodle-has-friends