Vulnerabilities

CVE-2017-7738

by Fred · 13/12/2017

An Information Disclosure vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.5, 5.2 and below versions allow an admin user with super_admin privileges to view the current SSL VPN web portal session info which may contains user credentials through the fnsysctl CLI command.

Date published : 2017-12-13

http://www.securityfocus.com/bid/102151

https://fortiguard.com/advisory/FG-IR-17-172

Similar

Tags: Cybersecurity Alert