An insertion of sensitive information into log file vulnerability [CWE-532] in the FortiPortal management interface 7.0.0 up to and including 7.0.2 may allow a remote authenticated malicious user to read other devices' passwords in the audit log page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortiportal 7.0.2 |
||
fortinet fortiportal 7.0.1 |
||
fortinet fortiportal 7.0.0 |