A use of one-way hash with a predictable salt vulnerability in the password storing mechanism of FortiPortal 6.0.0 through 6.04 may allow an attacker already in possession of the password store to decrypt the passwords by means of precomputed tables.
History

Fri, 25 Oct 2024 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: fortinet

Published: 2021-08-04T15:35:29

Updated: 2024-10-25T13:53:01.640Z

Reserved: 2021-05-11T00:00:00

Link: CVE-2021-32596

cve-icon Vulnrichment

Updated: 2024-08-03T23:25:30.563Z

cve-icon NVD

Status : Modified

Published: 2021-08-04T16:15:08.353

Modified: 2024-11-21T06:07:20.863

Link: CVE-2021-32596

cve-icon Redhat

No data.