A missing cryptographic steps vulnerability [CWE-325] in the functions that encrypt the keytab files in FortiOS version 7.2.0, 7.0.0 through 7.0.5 and below 7.0.0 may allow an attacker in possession of the encrypted file to decipher it.
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-22-158 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
09 Sep 2022, 03:06
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:* cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:* |
|
CWE | NVD-CWE-Other | |
References | (CONFIRM) https://fortiguard.com/psirt/FG-IR-22-158 - Vendor Advisory | |
First Time |
Fortinet
Fortinet fortios |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 3.3 |
06 Sep 2022, 18:50
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-09-06 18:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-29053
Mitre link : CVE-2022-29053
CVE.ORG link : CVE-2022-29053
JSON object : View
Products Affected
fortinet
- fortios
CWE