A use of one-way hash with a predictable salt vulnerability in the password storing mechanism of FortiPortal 6.0.0 through 6.04 may allow an attacker already in possession of the password store to decrypt the passwords by means of precomputed tables.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/advisory/FG-IR-21-094 |
History
Fri, 25 Oct 2024 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2021-08-04T15:35:29
Updated: 2024-10-25T13:53:01.640Z
Reserved: 2021-05-11T00:00:00
Link: CVE-2021-32596
Vulnrichment
Updated: 2024-08-03T23:25:30.563Z
NVD
Status : Modified
Published: 2021-08-04T16:15:08.353
Modified: 2024-11-21T06:07:20.863
Link: CVE-2021-32596
Redhat
No data.