Fortinet FortiAnalyzer prior to 5.0.12 and 5.2.x prior to 5.2.5; FortiSwitch 3.3.x prior to 3.3.3; FortiCache 3.0.x prior to 3.0.8; and FortiOS 4.1.x prior to 4.1.11, 4.2.x prior to 4.2.16, 4.3.x prior to 4.3.17 and 5.0.x prior to 5.0.8 have a hardcoded passphrase for the Fortimanager_Access account, which allows remote malicious users to obtain administrative access via an SSH session.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
fortinet fortios 5.0.2 |
||
fortinet fortios 5.0.6 |
||
fortinet fortios 5.0.7 |
||
fortinet fortios 5.0 |
||
fortinet fortios 5.0.1 |
||
fortinet fortios |
||
fortinet fortios 5.0.3 |
||
fortinet fortios 5.0.4 |
||
fortinet fortios 5.0.5 |
||
fortinet fortios 5.0.0 |
Vulmon