CVE-2019-13400

2019-07-0800:02:05

mitre

www.cve.org

AI Score

9.5

Confidence

High

EPSS

0.008

Percentile

81.3%

JSON

Dynacolor FCM-MB40 v1.2.0.0 use /etc/appWeb/appweb.pass to store administrative web-interface credentials in cleartext. These credentials can be retrieved via cgi-bin/getuserinfo.cgi?mode=info.

References

xor.cat/2019/06/19/fortinet-forticam-vulns/