Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
fortinetFortiGuard LabsFG-IR-20-044
HistoryNov 02, 2021 - 12:00 a.m.

Multiple Products - Retrieval of sensitive information in cleartext via GUI

2021-11-0200:00:00
FortiGuard Labs
www.fortiguard.com
17
fortiadc
fortisiem
fortiddos
gui
sensitive information
ldap passwords
radius shared secret
elastic cloud database

EPSS

0.001

Percentile

35.3%

JSON

A cleartext storage of sensitive information in the GUI of FortiADC, FortiSIEM, FortiDDoS, FortiDDoS-CM and FortiDDoS-F may allow a remote authenticated attacker to retrieve some sensitive information such as users LDAP passwords, RADIUS shared secret and the Elastic Cloud database password by deobfuscating the passwords entry fields.

Related

prion 1
cve 1
cvelist 1
nvd 1
prion
prion
Code injection
2021-11-02 19:15:00
cve
cve
CVE-2020-15935
2021-11-02 19:15:07
cvelist
cvelist
CVE-2020-15935
2021-11-02 19:00:53
nvd
nvd
CVE-2020-15935
2021-11-02 19:15:07

EPSS

0.001

Percentile

35.3%

JSON
Related for FG-IR-20-044
prion1cve1cvelist1nvd1