Unrated severityNVD Advisory· Published Nov 2, 2021· Updated Oct 25, 2024
CVE-2021-41019
CVE-2021-41019
Description
An improper validation of certificate with host mismatch [CWE-297] vulnerability in FortiOS versions 6.4.6 and below may allow the connection to a malicious LDAP server via options in GUI, leading to disclosure of sensitive information, such as AD credentials.
Affected products
2Patches
Vulnerability mechanics
References
1- fortiguard.com/advisory/FG-IR-21-074mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.