admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 01:02:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2023/CVE-2023-262xx/CVE-2023-26204.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

191 lines
6.3 KiB
JSON
Raw Blame History

{
"id": "CVE-2023-26204",
"sourceIdentifier": "psirt@fortinet.com",
"published": "2023-06-13T09:15:16.417",
"lastModified": "2024-11-21T07:50:54.617",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A plaintext storage of a password vulnerability [CWE-256] in FortiSIEM 6.7 all versions, 6.6 all versions, 6.5 all versions, 6.4 all versions, 6.3 all versions, 6.2 all versions, 6.1 all versions, 5.4 all versions, 5.3 all versions may allow\u00a0an attacker able to access user DB content to impersonate any admin user on the device GUI."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "psirt@fortinet.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"baseScore": 3.7,
"baseSeverity": "LOW",
"attackVector": "NETWORK",
"attackComplexity": "HIGH",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.2,
"impactScore": 1.4
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "psirt@fortinet.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-256"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-522"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:fortinet:fortisiem:*:*:*:*:*:*:*:*",
"versionStartIncluding": "5.3.0",
"versionEndIncluding": "5.3.3",
"matchCriteriaId": "A0258A88-352D-4F9A-894D-F7442CAFE461"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:fortinet:fortisiem:*:*:*:*:*:*:*:*",
"versionStartIncluding": "6.3.0",
"versionEndIncluding": "6.3.3",
"matchCriteriaId": "D9FC4C46-F269-4635-80BE-BED292538FEF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:fortinet:fortisiem:*:*:*:*:*:*:*:*",
"versionStartIncluding": "6.6.0",
"versionEndIncluding": "6.6.3",
"matchCriteriaId": "EB301503-0ECB-4D21-B341-ACF0F302CF85"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:fortinet:fortisiem:*:*:*:*:*:*:*:*",
"versionStartIncluding": "6.7.0",
"versionEndIncluding": "6.7.5",
"matchCriteriaId": "20FD2D69-73DD-4EA4-ADE6-EB4BCFED7AC7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:fortinet:fortisiem:5.4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "91E43A1B-D4C5-4FFF-9D3E-00140023921E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:fortinet:fortisiem:6.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7F52E2B2-A3B1-493F-B092-77A2A44E855A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:fortinet:fortisiem:6.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "7B16CB79-AC63-41EA-AE9A-D6030449ACD3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:fortinet:fortisiem:6.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "912BA146-D840-4855-8C47-AC3D5E6D0C4C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:fortinet:fortisiem:6.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "51452B16-AB83-41D3-8779-3E1AEA818AD1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:fortinet:fortisiem:6.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "3F453DE5-E31D-4BD1-8978-DD6D166045E0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:fortinet:fortisiem:6.4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C48AC74D-9FBE-4194-9BE8-FD2D6A0EC788"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:fortinet:fortisiem:6.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "BFFA27A5-0168-4261-9A04-D2DBB0A9946D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:fortinet:fortisiem:6.4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "2035DFA0-FF3A-4BBF-ABFE-0E310A7C668B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:fortinet:fortisiem:6.5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "A391C353-BD26-4262-B86F-E3FBF8915DCA"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:fortinet:fortisiem:6.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "EDD5BE55-0990-4646-ADA7-9A30981D4DF2"
}
]
}
]
}
],
"references": [
{
"url": "https://fortiguard.com/psirt/FG-IR-21-141",
"source": "psirt@fortinet.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://fortiguard.com/psirt/FG-IR-21-141",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink