The host is installed with Fortinet FortiClient through 5.6.0 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle the use of a static encryption key and weak encryption algorithms. Successful exploitation allows attackers to see each other's VPN authentication credentials.