Lucene search
PRIOn knowledge basePRION:CVE-2021-26098HistoryAug 04, 2021 - 2:15 p.m.
Design/Logic Flaw
2021-08-0414:15:00
PRIOn knowledge base
www.prio-n.com
3
An instance of small space of random values in the RPC API of FortiSandbox before 4.0.0 may allow an attacker in possession of a few information pieces about the state of the device to possibly predict valid session IDs.
| CPE | Name | Operator | Version |
|---|---|---|---|
| fortisandbox | le | 3.1.4 | |
| fortisandbox | ge | 3.2.0 | |
| fortisandbox | lt | 3.2.3 |
References
Related
cve
cve
CVE-2021-26098
2021-08-04 14:15:08
fortinet
fortinet
FortiSandbox - Predictable session IDs of JSON API
2021-08-03 00:00:00
nvd
nvd
CVE-2021-26098
2021-08-04 14:15:08
cvelist
cvelist
CVE-2021-26098
2021-08-04 13:20:48