{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-18T02:57:11.500","vulnerabilities":[{"cve":{"id":"CVE-2020-29010","sourceIdentifier":"psirt@fortinet.com","published":"2025-03-17T14:15:16.730","lastModified":"2025-07-24T20:15:46.223","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"An exposure of sensitive information to an unauthorized actor vulnerability in FortiOS version 6.2.4 and below, version 6.0.10 and belowmay allow remote authenticated actors to read the SSL VPN events log entries of users in other VDOMs by  executing \"get vpn ssl monitor\" from the CLI. The sensitive data includes usernames, user groups, and IP address."},{"lang":"es","value":"La exposición de información confidencial a una vulnerabilidad de un agente no autorizado en FortiOS versión 6.2.4 y anteriores, y versión 6.0.10 y anteriores, podría permitir que agentes autenticados remotamente lean las entradas del registro de eventos de SSL VPN de usuarios en otros VDOM mediante la ejecución de \"get vpn ssl monitor\" desde la CLI. Los datos confidenciales incluyen nombres de usuario, grupos de usuarios y direcciones IP."}],"metrics":{"cvssMetricV31":[{"source":"psirt@fortinet.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":1.4}]},"weaknesses":[{"source":"psirt@fortinet.com","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.0","versionEndExcluding":"6.0.11","matchCriteriaId":"D44B5E8F-6093-4E84-9197-4530032E5B5A"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2.0","versionEndExcluding":"6.2.5","matchCriteriaId":"B59A39D6-9494-4273-8348-1078A77DD796"}]}]}],"references":[{"url":"https://fortiguard.fortinet.com/psirt/FG-IR-20-103","source":"psirt@fortinet.com","tags":["Vendor Advisory"]}]}}]}