A exposure of sensitive information to an unauthorized actor in Fortinet FortiAuthenticator version 6.4.0, version 6.3.2 and below, version 6.2.1 and below, version 6.1.2 and below, version 6.0.7 to 6.0.1 allows malicious user to duplicate a target LDAP user 2 factors authentication token via crafted HTTP requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortiauthenticator |
||
fortinet fortiauthenticator 6.1.0 |
||
fortinet fortiauthenticator 6.1.1 |
||
fortinet fortiauthenticator 6.1.2 |
||
fortinet fortiauthenticator 6.2.0 |
||
fortinet fortiauthenticator 6.2.1 |
||
fortinet fortiauthenticator 6.3.0 |
||
fortinet fortiauthenticator 6.3.1 |
||
fortinet fortiauthenticator 6.3.2 |
||
fortinet fortiauthenticator 6.4.0 |