Sign in Get started

← All advisories

Critical severity9.1NVD Advisory· Published Feb 1, 2017· Updated May 13, 2026

CVE-2016-8491

CVE-2016-8491

Description

The presence of a hardcoded account named 'core' in Fortinet FortiWLC allows attackers to gain unauthorized read/write access via a remote shell.

Affected products

6

Fortinet/Fortiwlc5 versions
cpe:2.3:h:fortinet:fortiwlc:7.0-10-0:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:h:fortinet:fortiwlc:7.0-10-0:*:*:*:*:*:*:*
- cpe:2.3:h:fortinet:fortiwlc:7.0-9-1:*:*:*:*:*:*:*
- cpe:2.3:h:fortinet:fortiwlc:8.1-2-0:*:*:*:*:*:*:*
- cpe:2.3:h:fortinet:fortiwlc:8.1-3-2:*:*:*:*:*:*:*
- cpe:2.3:h:fortinet:fortiwlc:8.2-4-0:*:*:*:*:*:*:*
Fortinet/Fortinet FortiWLCv5
Range: 7.0-9-1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

www.securityfocus.com/bid/94186nvdThird Party AdvisoryVDB Entry
fortiguard.com/advisory/FG-IR-16-065nvdVendor Advisory

News mentions

0

No linked articles in our index yet.