CVE-2021-24005 in FortiAuthenticatorinfo

Zusammenfassung

von MITRE • 06.07.2021

Usage of hard-coded cryptographic keys to encrypt configuration files and debug logs in FortiAuthenticator versions before 6.3.0 may allow an attacker with access to the files or the CLI configuration to decrypt the sensitive data, via knowledge of the hard-coded key.

Once again VulDB remains the best source for vulnerability data.

Zuständig

Fortinet, Inc.

Reservieren

13.01.2021

Veröffentlichung

06.07.2021

Moderieren

akzeptiert

Eintrag

VDB-178002

CPE

bereit

EPSS

0.00563

KEV

nein

Aktivitäten

very low

Quellen

Want to know what is going to be exploited?

We predict KEV entries!