Sensitive Credentials Exposure in Fortinet FortiWLC
CVE-2016-7561

7.2HIGH

Key Information:

Vendor: Fortinet
Status: Fortiwlc
Vendor: CVE Published:; 5 October 2016

Summary

The Fortinet FortiWLC is susceptible to a vulnerability that allows administrators to access sensitive user credentials through the pam.log file. This exposure can lead to unauthorized access and further exploitation of user data, compromising the integrity of the system. Organizations using affected versions should take immediate action to secure their FortiWLC installations.

References

http://fortiguard.com/advisory/FG-IR-16-030

x_refsource_CONFIRM

http://www.securityfocus.com/bid/93282

vdb-entryx_refsource_BID

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 5, 2016
Vulnerability Reserved
Sep 9, 2016