CVE-2023-26204
CVSS V2 None
CVSS V3 None
Description
A plaintext storage of a password vulnerability [CWE-256] in FortiSIEM 6.7 all versions, 6.6 all versions, 6.5 all versions, 6.4 all versions, 6.3 all versions, 6.2 all versions, 6.1 all versions, 5.4 all versions, 5.3 all versions may allow an attacker able to access user DB content to impersonate any admin user on the device GUI.
Overview
- CVE ID
- CVE-2023-26204
- Assigner
- fortinet
- Vulnerability Status
- PUBLISHED
- Published Version
- 2023-06-13T08:41:46.337Z
- Last Modified Date
- 2023-06-13T08:41:46.337Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://fortiguard.com/psirt/FG-IR-21-141 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-26204 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26204 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-24 23:26:27 | Added to TrackCVE |