Cleartext Password Disclosure Vulnerability in Fortinet FortiWeb 5.8.2 and Below

Cleartext Password Disclosure Vulnerability in Fortinet FortiWeb 5.8.2 and Below

CVE-2017-7737 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

An information disclosure vulnerability in Fortinet FortiWeb 5.8.2 and below versions allows logged-in admin user to view SNMPv3 user password in cleartext in webui via the HTML source code.

Learn more about our Cis Benchmark Audit For Fortinet.