A use of password hash with insufficient computational effort vulnerability [CWE-916] in FortiSandbox may allow an attacker with access to the password database to efficiently mount bulk guessing attacks to recover the passwords.
CPE | Name | Operator | Version |
---|---|---|---|
fortisandbox | eq | 4.0.3 | |
fortisandbox | eq | 4.0.2 | |
fortisandbox | eq | 4.0.1 | |
fortisandbox | eq | 4.0.0 | |
fortisandbox | eq | 3.2.4 | |
fortisandbox | eq | 3.2.3 | |
fortisandbox | eq | 3.2.2 | |
fortisandbox | eq | 3.2.1 | |
fortisandbox | eq | 3.2.0 |