Unrated severityNVD Advisory· Published Oct 6, 2021· Updated Oct 25, 2024
CVE-2021-36178
CVE-2021-36178
Description
A insufficiently protected credentials in Fortinet FortiSDNConnector version 1.1.7 and below allows attacker to disclose third-party devices credential information via configuration page lookup.
Affected products
2<=1.1.7+ 1 more
- (no CPE)range: <=1.1.7
- (no CPE)range: FortiSDNConnector 1.1.7, 1.1.6, 1.1.5, 1.1.4, 1.1.3, 1.1.2, 1.1.1, 1.1.0, 1.0.0
Patches
Vulnerability mechanics
References
1- fortiguard.com/advisory/FG-IR-20-183mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.