Fortinet Fortigate Flaws over keytab encryption scheme (FG-IR-22-158)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-158 advisory. - A missing cryptographic steps vulnerability CWE-325 in the functions that encrypt the keytab files in FortiOS version 7.2.0...

PT-2022-19393 · Fortinet · Fortiproxy +1

Name of the Vulnerable Software and Affected Versions: FortiOS versions 7.0.0 through 7.2.0 FortiOS versions below 7.0.0 Description: A missing cryptographic steps issue in the functions that encrypt keytab files may allow an attacker in possession of the encrypted file to decipher it. This affec...