A cleartext transmission of sensitive information vulnerability in Fortinet FortiManager 5.2.0 up to and including 5.2.7, 5.4.0 and 5.4.1 may allow an unauthenticated attacker in a man in the middle position to retrieve the admin password via intercepting REST API JSON responses.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortimanager 5.4.1 |
||
fortinet fortimanager |
||
fortinet fortimanager 5.4.0 |