VYPR
Unrated severityNVD Advisory· Published Mar 1, 2022· Updated Oct 25, 2024

CVE-2021-36166

CVE-2021-36166

Description

An improper authentication vulnerability in FortiMail before 7.0.1 may allow a remote attacker to efficiently guess one administrative account's authentication token by means of the observation of certain system's properties.

Affected products

2
  • Fortinet/Fortimailllm-fuzzy2 versions
    <7.0.1+ 1 more
    • (no CPE)range: <7.0.1
    • (no CPE)range: FortiMail before 7.0.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.