Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/27 12:0 a.m.22 views

Fortinet Fortigate Hardcoded symmetric key in fips.c (FG-IR-19-007)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the FG-IR-19-007 advisory. - Use of a hard-coded cryptographic key to cipher sensitive data in FortiOS configuration backup file may allow an...

7.5CVSS6.8AI score0.05663EPSS
Exploits1References3
Circl
Circl
added 2023/07/06 11:8 a.m.11 views

CVE-2019-6693

creationtimestamp| type| source ---|---|--- 2023-07-06 11:08:24+00:00| published-proof-of-concept| https://t.me/dilagrafie/3103 2023-07-15 04:02:00+00:00| published-proof-of-concept| Telegram/FQgTqgAsC1BzgFQ3QhqXo3ZwrqpxzvjIHl33wB4sG5coLAQ 2023-08-16 06:30:09+00:00| published-proof-of-concept|...

6.5CVSS6.8AI score0.05663EPSS
Exploits1References14
GithubExploit
GithubExploit
added 2023/06/30 8:48 a.m.11 views

Exploit for Use of Hard-coded Credentials in Fortinet Fortianalyzer

Decrypt FortiManager configuration secrets CVE-2020-9289 CV...

7.5CVSS6.1AI score0.05663EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2019/12/19 12:0 a.m.193 views

Fortinet FortiOS < 5.6.10 / 6.0 < 6.0.7 / 6.2.x < 6.2.1 Vulnerable Encryption (FG-IR-19-007)

The remote host is running a version of FortiOS that has not yet enabled private-data-encryption. A authorized remote user with access or knowledge of the standard encryption key could gain access and decrypt the FortiOS backup files and all non-administor passwords and private keys.' CVE-2019-66...

6.5CVSS6.5AI score0.05663EPSS
Exploits1References2
CVE
CVE
added 2019/11/21 3:8 p.m.204 views

CVE-2019-6693

Fortinet FortiOS contains a vulnerability CVE-2019-6693: use of a hard-coded cryptographic key to cipher sensitive data in FortiOS configuration backup files. An attacker with access to the backup file could decrypt sensitive data, including users’ passwords (excluding admin), private keys’ passp...

6.5CVSS6.8AI score0.05663EPSS
In wildExploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2019/11/21 12:0 a.m.6 views

CVE-2019-6693

Use of a hard-coded cryptographic key to cipher sensitive data in FortiOS configuration backup file may allow an attacker with access to the backup file to decipher the sensitive data, via knowledge of the hard-coded key. The aforementioned sensitive data includes users’ passwords except the...

6.5CVSS6.1AI score0.05663EPSS
In wildExploits1References2
Rows per page
Query Builder