CVE-2023-26207

An insertion of sensitive information into log file vulnerability in Fortinet FortiOS 7.2.0 through 7.2.4 and FortiProxy 7.0.0 through 7.0.10. 7.2.0 through 7.2.1 allows an attacker to read certain passwords in plain text.

Published: Jun 13, 2023
Updated: Jun 17, 2023
CVE: CVE-2023-26207
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWEs:

CWE-532

Affected Software
References

Software	From	Fixed in
fortinet / fortiproxy	7.2.0	7.2.0.x
fortinet / fortiproxy	7.2.1	7.2.1.x
fortinet / fortios	7.2.0	7.2.4.x
fortinet / fortiproxy	7.0.0	7.0.10.x

https://fortiguard.com/psirt/FG-IR-22-455

Vulnerability Database

289,784

CVE-2023-26207