Lucene search
PRIOn knowledge basePRION:CVE-2022-26115HistoryFeb 16, 2023 - 7:15 p.m.
Design/Logic Flaw
2023-02-1619:15:00
PRIOn knowledge base
www.prio-n.com
3
password hash vulnerability
fortisandbox
bulk guessing attacks
cwe-916
security flaw
A use of password hash with insufficient computational effort vulnerability [CWE-916] in FortiSandbox before 4.2.0 may allow an attacker with access to the password database to efficiently mount bulk guessing attacks to recover the passwords.
| CPE | Name | Operator | Version |
|---|---|---|---|
| fortisandbox | eq | 3.2.2 | |
| fortisandbox | eq | 4.0.0 | |
| fortisandbox | eq | 3.2.0 | |
| fortisandbox | eq | 3.2.1 | |
| fortisandbox | eq | 3.2.3 | |
| fortisandbox | eq | 4.0.1 | |
| fortisandbox | eq | 4.0.2 |
References
Related
fortinet
fortinet
FortiSandbox - Improper password storage mechanism
2023-02-16 00:00:00
nvd
nvd
CVE-2022-26115
2023-02-16 19:15:12
cvelist
cvelist
CVE-2022-26115
2023-02-16 18:07:32
cve
cve
CVE-2022-26115
2023-02-16 19:15:12