VYPR
Unrated severityNVD Advisory· Published Jun 11, 2024· Updated Aug 27, 2025

CVE-2024-21754

CVE-2024-21754

Description

A use of password hash with insufficient computational effort vulnerability [CWE-916] affecting FortiOS version 7.4.3 and below, 7.2 all versions, 7.0 all versions, 6.4 all versions and FortiProxy version 7.4.2 and below, 7.2 all versions, 7.0 all versions, 2.0 all versions may allow a privileged attacker with super-admin profile and CLI access to decrypting the backup file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Fortinet/Fortiproxyllm-fuzzy2 versions
    <=7.4.2, 7.2 all, 7.0 all, 2.0 all+ 1 more
    • (no CPE)range: <=7.4.2, 7.2 all, 7.0 all, 2.0 all
    • (no CPE)range: 7.4.0
  • Fortinet/Fortiosllm-fuzzy2 versions
    <=7.4.3, 7.2 all, 7.0 all, 6.4 all+ 1 more
    • (no CPE)range: <=7.4.3, 7.2 all, 7.0 all, 6.4 all
    • (no CPE)range: 7.4.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.