Home
LOW: 2.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:CDefault status
unaffected
5.0.0 (semver)
affected
4.4.0 (semver)
affected
Default status
unaffected
23.4.4374
affected
23.4.4350
affected
23.3.4329
affected
23.1.4245
affected
22.2.4151
affected
22.2.4134
affected
22.1.4113
affected
21.4.4072
affected
21.3.4055
affected
5.0.1 (semver)
affected
Description
A insufficiently protected credentials vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4 all versions, FortiSandbox PaaS 5.0.1 through 5.0.5 may allow an authenticathed administrator to read LDAP server credentials via client-side inspection.
Problem types
Product status
5.0.0 (semver)
4.4.0 (semver)
23.4.4374
23.4.4350
23.3.4329
23.1.4245
22.2.4151
22.2.4134
22.1.4113
21.4.4072
21.3.4055
5.0.1 (semver)
References
fortiguard.fortinet.com/psirt/FG-IR-26-113