A cleartext storage of sensitive information in GUI in FortiADC versions 5.4.3 and below, 6.0.0 and below may allow a remote authenticated malicious user to retrieve some sensitive information such as users LDAP passwords and RADIUS shared secret by deobfuscating the passwords entry fields.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortiadc |