Lucene search
+L

4 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/27 12:0 a.m.8 views

Fortinet FortiClient stores the SSLVPN password in cleartext (FG-IR-22-246) (macOS)

The version of FortiClient installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-246 advisory. - An exposure of sensitive information to an unauthorized actor vulnerabiltiy CWE-200 in FortiClient for Mac versions 7.0.0...

5.5CVSS5.7AI score0.00143EPSS
Exploits0References2
OSV
OSV
added 2022/11/02 12:15 p.m.5 views

CVE-2022-33878

An exposure of sensitive information to an unauthorized actor vulnerabiltiy CWE-200 in FortiClient for Mac versions 7.0.0 through 7.0.5 may allow a local authenticated attacker to obtain the SSL-VPN password in cleartext via running a logstream for the FortiTray process in the terminal...

5.5CVSS5.8AI score0.00143EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/11/02 12:15 p.m.2 views

CVE-2022-33878

An exposure of sensitive information to an unauthorized actor vulnerabiltiy CWE-200 in FortiClient for Mac versions 7.0.0 through 7.0.5 may allow a local authenticated attacker to obtain the SSL-VPN password in cleartext via running a logstream for the FortiTray process in the terminal...

5.5CVSS5.8AI score0.00143EPSS
Exploits0References2
CVE
CVE
added 2022/11/02 12:0 a.m.77 views

CVE-2022-33878

CVE-2022-33878 affects FortiClient for Mac, versions 7.0.0–7.0.5. A local authenticated attacker can obtain the SSL-VPN password in cleartext by running a logstream for the FortiTray process in the terminal. This is a local-attack scenario with disclosure of sensitive credentials; the provided do...

5.5CVSS5.2AI score0.00143EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder