Lucene search
FortiGuard LabsFG-IR-20-220HistoryFeb 16, 2023 - 12:00 a.m.
FortiSandbox - Improper password storage mechanism
2023-02-1600:00:00
FortiGuard Labs
www.fortiguard.com
8
fortisandbox
password storage
computational effort
0.001 Low
EPSS
Percentile
49.0%
A use of password hash with insufficient computational effort vulnerability [CWE-916] in FortiSandbox may allow an attacker with access to the password database to efficiently mount bulk guessing attacks to recover the passwords.
| CPE | Name | Operator | Version |
|---|---|---|---|
| fortisandbox | eq | 4.0.3 | |
| fortisandbox | eq | 4.0.2 | |
| fortisandbox | eq | 4.0.1 | |
| fortisandbox | eq | 4.0.0 | |
| fortisandbox | eq | 3.2.4 | |
| fortisandbox | eq | 3.2.3 | |
| fortisandbox | eq | 3.2.2 | |
| fortisandbox | eq | 3.2.1 | |
| fortisandbox | eq | 3.2.0 |
Related
nvd
nvd
CVE-2022-26115
2023-02-16 19:15:12
cvelist
cvelist
CVE-2022-26115
2023-02-16 18:07:32
cve
cve
CVE-2022-26115
2023-02-16 19:15:12
prion
prion
Design/Logic Flaw
2023-02-16 19:15:00