fkie_nvd - fkie_cve-2016-7542

fkie_cve-2016-7542

Vulnerability from fkie_nvd

Published

2017-03-30 14:59

Modified

2024-11-21 02:58

Severity ?

4.9 (Medium) - CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Summary

A read-only administrator on Fortinet devices with FortiOS 5.2.x before 5.2.10 GA and 5.4.x before 5.4.2 GA may have access to read-write administrators password hashes (not including super-admins) stored on the appliance via the webui REST API, and may therefore be able to crack them.

References

URL	Tags
psirt@fortinet.com	http://fortiguard.com/advisory/FG-IR-16-050	Not Applicable
psirt@fortinet.com	http://www.securityfocus.com/bid/94690	Third Party Advisory, VDB Entry
psirt@fortinet.com	http://www.securitytracker.com/id/1037394
af854a3a-2127-422b-91ae-364da2661108	http://fortiguard.com/advisory/FG-IR-16-050	Not Applicable
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/94690	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1037394

Impacted products

Vendor	Product	Version
fortinet	fortios	5.2.0
fortinet	fortios	5.2.1
fortinet	fortios	5.2.2
fortinet	fortios	5.2.3
fortinet	fortios	5.2.4
fortinet	fortios	5.2.5
fortinet	fortios	5.2.6
fortinet	fortios	5.2.7
fortinet	fortios	5.2.8
fortinet	fortios	5.2.9
fortinet	fortios	5.4.0
fortinet	fortios	5.4.1

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:5.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "7E627C59-7C16-44F0-800D-A2E8A766B26D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:5.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "233236FA-BB13-4261-BE2E-3E617406DC53",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:5.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "27844CC9-498B-4A65-91AC-AC130222EE5F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:5.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "27B4C672-7ED5-4113-87AE-5774D1263C0B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:5.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "2CBEA3AA-AE46-4A55-91EE-9ADC187BF614",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:5.2.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "05CB7A90-91BC-49AF-9B5C-EBD212484C64",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:5.2.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "864D3221-177B-43CE-BD7D-CB14A110268E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:5.2.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "31C186D6-6AC5-49EB-A701-C91358B4A25F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:5.2.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "DAC9F6C4-F887-4F25-87BD-383F6CF39806",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:5.2.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "F8558962-7A19-4F4A-BED0-9CB5D4CFC422",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:5.4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "1668AE14-D9A4-4B7D-BC3F-75885792875A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:5.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "9E0F3B9B-A06F-4A96-B2E7-9DC56E629182",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A read-only administrator on Fortinet devices with FortiOS 5.2.x before 5.2.10 GA and 5.4.x before 5.4.2 GA may have access to read-write administrators password hashes (not including super-admins) stored on the appliance via the webui REST API, and may therefore be able to crack them."
    },
    {
      "lang": "es",
      "value": "Un administrador de s\u00f3lo lectura en dispositivos Fortinet con FortiOS 5.2.x en versiones anteriores a 5.2.10 GA y FortiOS 5.4.x en versiones anteriores a 5.4.2 GA puede tener acceso de lectura-escritura a hashes de contrase\u00f1as de administradores (no incluyendo super-admins), almacenados en el dispositivo a trav\u00e9s de la API Rest webui, y puede por lo tanto ser capaz de romperlo."
    }
  ],
  "id": "CVE-2016-7542",
  "lastModified": "2024-11-21T02:58:10.920",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "NONE",
          "baseScore": 4.0,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 4.9,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 1.2,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2017-03-30T14:59:00.197",
  "references": [
    {
      "source": "psirt@fortinet.com",
      "tags": [
        "Not Applicable"
      ],
      "url": "http://fortiguard.com/advisory/FG-IR-16-050"
    },
    {
      "source": "psirt@fortinet.com",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/94690"
    },
    {
      "source": "psirt@fortinet.com",
      "url": "http://www.securitytracker.com/id/1037394"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Not Applicable"
      ],
      "url": "http://fortiguard.com/advisory/FG-IR-16-050"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/94690"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id/1037394"
    }
  ],
  "sourceIdentifier": "psirt@fortinet.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-200"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

cve-2016-7542

Vulnerability from cvelistv5

Published

2017-03-30 14:00

Modified

2024-10-25 14:35