PSIRT Advisory

The ROBOT Attack - Return of Bleichenbacher's Oracle Threat

Summary

A plaintext recovery of encrypted messages or a Man-in-the-middle (MiTM) attack on RSA PKCS #1 v1.5 encryption is possible without knowledge of the server's private key.

Impact

Information Exposure Through Discrepancy

Affected Products

The following Fortinet products are NOT affected:
FortiOS
FortiSwitch
FortiAP
FortiAnalyzer
FortiMail
fortiManager
FortiWeb