4 matches found
CVE-2023-26204
A plaintext storage of a password vulnerability CWE-256 in FortiSIEM 6.7 all versions, 6.6 all versions, 6.5 all versions, 6.4 all versions, 6.3 all versions, 6.2 all versions, 6.1 all versions, 5.4 all versions, 5.3 all versions may allow an attacker able to access user DB content to impersonate...
CVE-2023-26204
A plaintext storage of a password vulnerability CWE-256 in FortiSIEM 6.7 all versions, 6.6 all versions, 6.5 all versions, 6.4 all versions, 6.3 all versions, 6.2 all versions, 6.1 all versions, 5.4 all versions, 5.3 all versions may allow an attacker able to access user DB content to impersonate...
CVE-2023-26204
A plaintext storage of a password vulnerability CWE-256 in FortiSIEM 6.7 all versions, 6.6 all versions, 6.5 all versions, 6.4 all versions, 6.3 all versions, 6.2 all versions, 6.1 all versions, 5.4 all versions, 5.3 all versions may allow an attacker able to access user DB content to impersonate...
CVE-2023-26204
CVE-2023-26204 describes a plaintext storage of admin credentials in FortiSIEM, affecting Fortinet FortiSIEM versions 6.7, 6.6, 6.5, 6.4, 6.3, 6.2, 6.1, 5.4, and 5.3. The root cause is storage of passwords in plaintext (CWE-256), which may allow an attacker with access to the user database to imp...