A use of one-way hash with a predictable salt vulnerability in the password storing mechanism of FortiPortal 6.0.0 through 6.04 may allow an attacker already in possession of the password store to decrypt the passwords by means of precomputed tables.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/advisory/FG-IR-21-094 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2021-08-04T15:35:29
Updated: 2024-08-03T23:25:30.563Z
Reserved: 2021-05-11T00:00:00
Link: CVE-2021-32596
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-08-04T16:15:08.353
Modified: 2021-08-10T23:36:57.073
Link: CVE-2021-32596
Redhat
No data.