Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Fortinet FortiAuthenticator 3.0.0 has a password of (1) slony for the slony PostgreSQL user and (2) www-data for the www-data PostgreSQL user, which makes it easier for remote attackers to obtain access via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Fortinet FortiAuthenticator 安全漏洞
Vulnerability Description
Fortinet FortiAuthenticator是美国飞塔(Fortinet)公司的系列安全认证软件,它可与FortiToken(双因子认证令牌)结合,向通过RADIUS或LDAP认证的第三方设备提供安全的双因子验证。 Fortinet FortiAuthenticator 3.0.0版本中存在安全漏洞,该漏洞源于程序使用默认的密码(slony PostgreSQL用户使用slony密码,www-data PostgreSQL用户使用www-data密码)。远程攻击者可利用该漏洞获取访问权限。
CVSS Information
N/A
Vulnerability Type
N/A