VYPR
Unrated severityNVD Advisory· Published Oct 6, 2021· Updated Oct 25, 2024

CVE-2021-36178

CVE-2021-36178

Description

A insufficiently protected credentials in Fortinet FortiSDNConnector version 1.1.7 and below allows attacker to disclose third-party devices credential information via configuration page lookup.

Affected products

2
  • Fortinet/FortiSDNConnectorllm-create2 versions
    <=1.1.7+ 1 more
    • (no CPE)range: <=1.1.7
    • (no CPE)range: FortiSDNConnector 1.1.7, 1.1.6, 1.1.5, 1.1.4, 1.1.3, 1.1.2, 1.1.1, 1.1.0, 1.0.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.