Lucene search
K

25 matches found

Vulnrichment
Vulnrichment
added 2021/07/09 6:23 p.m.10 views

CVE-2021-26100

A missing cryptographic step in the Identity-Based Encryption service of FortiMail before 7.0.0 may allow an unauthenticated attacker who intercepts the encrypted messages to manipulate them in such a way that makes the tampering and the recovery of the plaintexts possible...

5.9CVSS6.9AI score0.00342EPSS
Exploits0References1
CVE
CVE
added 2021/07/09 6:23 p.m.89 views

CVE-2021-26100

CVE-2021-26100 affects Fortinet FortiMail’s Identity-Based Encryption (IBE) service prior to version 7.0.0. The issue is a missing cryptographic step that can allow an unauthenticated attacker who intercepts encrypted messages to tamper with them and recover plaintexts. Fortinet’s PSIRT advisory ...

7.5CVSS7.4AI score0.00342EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2021/07/02 12:0 a.m.7 views

PT-2021-3853 · Fortinet · Fortimail

Name of the Vulnerable Software and Affected Versions: FortiMail versions prior to 7.0.0 Description: The issue is related to missing cryptographic steps in the Identity-Based Encryption service of FortiMail, which may allow an attacker to compromise the confidentiality of encrypted master keys b...

4.9CVSS5AI score0.00545EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2021/06/21 12:0 a.m.5 views

PT-2021-3854 · Fortinet · Fortimail

Name of the Vulnerable Software and Affected Versions: FortiMail affected versions not specified Description: The issue is related to errors in the code of the pseudorandom number generator in the FortiMail IBE Identity Based Encryption service. This could allow a remote attacker to gain...

7.8CVSS6.5AI score0.00294EPSS
Exploits0References9
Cvelist
Cvelist
added 2013/02/04 7:0 p.m.26 views

CVE-2013-1471

Multiple cross-site scripting XSS vulnerabilities in admin/FEAdmin.html in Fortinet FortiMail before 4.3.4 on FortiMail Identity-Based Encryption IBE appliances allow user-assisted remote attackers to inject arbitrary web script or HTML via 1 the Add field for the Black List under Antispam...

5.8AI score0.02015EPSS
Exploits1References3
Rows per page
Query Builder