CVE-2024-32122

LOW(2.3)

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Risk Signal Score6/100 — NIEDRIG

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

2.3

Technische Schwere

Beschreibung

A storing passwords in a recoverable format in Fortinet FortiOS 7.4.0 through 7.4.8, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions allows attacker to information disclosure via modification of LDAP server IP to point to a malicious server.

Referenzen

https://fortiguard.fortinet.com/psirt/FG-IR-24-111
https://cert-portal.siemens.com/productcert/html/ssa-864900.html