Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
fortinetFortiGuard LabsFG-IR-17-172
HistoryDec 08, 2017 - 12:00 a.m.

SSL VPN Web Portal user credentials may be leaked to super_admins

2017-12-0800:00:00
FortiGuard Labs
www.fortiguard.com
16

EPSS

0.001

Percentile

32.2%

JSON

An admin user with super_admin privileges (i.e. with a super_admin profile) may view the current sslvpn web portal session info, using the fnsysctl CLI command. This info includes user credentials.

Related

nvd 1
cvelist 1
prion 1
cve 1
nessus 1
nvd
nvd
CVE-2017-7738
2017-12-13 22:29:00
cvelist
cvelist
CVE-2017-7738
2017-12-13 22:00:00
prion
prion
Information disclosure
2017-12-13 22:29:00
cve
cve
CVE-2017-7738
2017-12-13 22:29:00
nessus
nessus
Fortinet FortiGate <= 5.2.x / 5.4.x < 5.4.9 / 5.6.x < 5.6.3 Multiple Vulnerabilities (FG-IR-17-231, FG-IR-17-245 and FG-IR-17-172)
2018-06-08 00:00:00

EPSS

0.001

Percentile

32.2%

JSON
Related for FG-IR-17-172
nvd1cvelist1prion1cve1nessus1