Required CVE Record Information
Description
A storing passwords in a recoverable format in Fortinet FortiOS versions 7.2.0 through 7.2.1 allows attacker to information disclosure via modification of LDAP server IP to point to a malicious server.
CVSS 1 Total
| Score | Severity | Version | Vector String |
|---|---|---|---|
| 2.1 | LOW | 3.1 | CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N/E:P/RL:W/RC:C |