CVE-2019-5591

CVSS v3.1

6.5

Medium

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions FortiOS (affected versions not specified)

Description A default configuration issue in FortiOS may allow an unauthenticated attacker on the same subnet to intercept sensitive information by impersonating the LDAP server. The issue relates to authorization errors.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Insufficient Verification of Data Authenticity

Missing Authentication

Improper Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-345CWE-306CWE-285

Related Identifiers

BDU:2019-04699

CVE-2019-5591

Affected Products

Fortios

CVE-2019-5591

Weakness Enumeration

Related Identifiers

Affected Products

References · 24