Unprotected Storage of Credentials in Fortinet FortiSIEM Windows Agent: Disclosure of Agent Password

Unprotected Storage of Credentials in Fortinet FortiSIEM Windows Agent: Disclosure of Agent Password

CVE-2021-41023 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

A unprotected storage of credentials in Fortinet FortiSIEM Windows Agent version 4.1.4 and below allows an authenticated user to disclosure agent password due to plaintext credential storage in log files

Learn more about our Cis Benchmark Audit For Fortinet.