An exposure of sensitive information to an unauthorized actor vulnerabiltiy [CWE-200] in FortiOS SSL-VPN versions 7.2.0, versions 7.0.0 up to and including 7.0.6 and versions 6.4.0 up to and including 6.4.9 may allow a remote unauthenticated malicious user to gain information about LDAP and SAML settings configured in FortiOS.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortios 7.2.0 |
||
fortinet fortios |