ROCA: Vulnerable RSA key pairs generation (CVE-2017-15361)
Summary
An old Infineon RSA library does not properly generate RSA key pairs, therefore enabling an attacker to potentially infer a private key from a public key.
Affected Products
The following Fortinet products are NOT affected:FortiOS
FortiSwitch
FortiAP
FortiAnalyzer
FortiMail
fortiManager
FortiWeb
FortiToken
FortiAuthenticator
None of the products above are using the affected Infineon RSA library or TPM chips.