PT-2023-7268 · Microsoft+1 · Windows+1
Published
2023-11-14
·
Updated
2023-11-21
·
CVE-2023-41676
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
FortiSIEM versions 6.7.5 and earlier
FortiSIEM version 7.0.0
Description
The issue is related to insufficient protection of sensitive data, which may allow an unauthorized actor to obtain sensitive information. An attacker with access to Windows agent logs may be able to obtain the Windows agent password by searching through the logs. This could potentially allow a remote attacker to gain unauthorized access to protected information.
Recommendations
For FortiSIEM versions 6.7.5 and earlier, update to a version that contains a fix for this issue.
For FortiSIEM version 7.0.0, update to a version that contains a fix for this issue.
As a temporary workaround, consider restricting access to Windows agent logs to minimize the risk of exploitation.
Fix
Insufficiently Protected Credentials
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Fortisiem
Windows