A use of a one-way hash with a predictable salt vulnerability [CWE-760] in FortiWAN before 4.5.9 may allow an attacker who has previously come in possession of the password file to potentially guess passwords therein stored.
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-21-064 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: fortinet
Published: 2022-04-06T16:00:57
Updated: 2022-04-06T16:00:57
Reserved: 2021-01-25T00:00:00
Link: CVE-2021-26113
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-04-06T16:15:07.917
Modified: 2022-04-13T17:51:48.940
Link: CVE-2021-26113
JSON object: View
Redhat Information
No data.
CWE