VYPR
Unrated severityNVD Advisory· Published Aug 4, 2021· Updated Oct 25, 2024

CVE-2021-32596

CVE-2021-32596

Description

A use of one-way hash with a predictable salt vulnerability in the password storing mechanism of FortiPortal 6.0.0 through 6.04 may allow an attacker already in possession of the password store to decrypt the passwords by means of precomputed tables.

Affected products

2
  • Fortinet/Fortiportalllm-fuzzy2 versions
    <6.0.0 to 6.04+ 1 more
    • (no CPE)range: <6.0.0 to 6.04
    • (no CPE)range: FortiPortal 6.0.4, 6.0.3, 6.0.2, 6.0.1, 6.0.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.