exploitDog

GHSA-8gqm-crwv-8r3m

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

A weak password recovery vulnerability in Fortinet FortiPortal versions 4.0.0 and below allows attacker to carry out information disclosure via the Forgotten Password feature.

A weak password recovery vulnerability in Fortinet FortiPortal versions 4.0.0 and below allows attacker to carry out information disclosure via the Forgotten Password feature.

Ссылки

EPSS

Процентиль: 49%

0.00262

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-640

Связанные уязвимости

CVE-2017-7731

CVSS3: 7.5

nvd

больше 8 лет назад

A weak password recovery vulnerability in Fortinet FortiPortal versions 4.0.0 and below allows attacker to carry out information disclosure via the Forgotten Password feature.

EPSS

Процентиль: 49%

0.00262

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-640