CVE-2019-6693

Decrypt FortiGate configuration secrets

CVE-2019-6693 Decrypt FortiGate configuration secrets Original advisory Vendor advisory For Fortigate VM/appliances below versions 620, 600 to 606, 5610 configuration secrets are stored encrypted with a unique key For versions above the non-default private-data-encryption parameter lets the user use a custom key This is rarely used, even today This script decrypts se

Decrypt reversible secrets encrypted using the default hardcoded key related to CVE-2020-9289 on FortiAnalyzer/FortiManager (the only difference with CVE-2019-6693 is the encryption routine).

Decrypt FortiManager configuration secrets (CVE-2020-9289) CVE-2020-9289 and CVE-2019-6693 are related to the same default and hardcoded key The only differences on the decryption routine implemented in FortiManager/FortiAnalyzer are: The IV handling (all the 16 bytes are provided before the encrypted data from digits) The last encrypted block is stripped from the output so

An authorized remote user with access or knowledge of the standard encryption key can gain access and decrypt the FortiOS backup files and all non-administator passwords, private keys and High Availability passwords.

FortiGate Password Decrypt Script - CVE-2019-6693 🔐 An authorized remote user with access or knowledge of the standard encryption key could gain access and decrypt the FortiOS backup files and all non-administrator passwords, private keys, and High Availability (HA) passwords Overview This Python script is designed to recover passwords encrypted using FortiGate's en