A missing cryptographic steps vulnerability in the function that encrypts users' LDAP and RADIUS credentials in FortiSandbox prior to 4.0.1, FortiWeb prior to 6.3.12, FortiADC prior to 6.2.1, FortiMail 7.0.1 and previous versions may allow an attacker in possession of the password store to compromise the confidentiality of the encrypted secrets.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortimail |
||
fortinet fortisandbox |
||
fortinet fortiadc |
||
fortinet fortiweb 5.9.0 |
||
fortinet fortiweb 5.9.1 |
||
fortinet fortiweb |
||
fortinet fortimail 7.0.1 |
||
fortinet fortiadc 6.2.0 |
||
fortinet fortisandbox 4.0.0 |
||
fortinet fortiadc 6.2.1 |
||
fortinet fortimail 7.0.0 |