Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Missing cryptographic steps in the Identity-Based Encryption service of FortiMail before 7.0.0 may allow an attacker who comes in possession of the encrypted master keys to compromise their confidentiality by observing a few invariant properties of the ciphertext.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
Fortinet FortiMail 安全漏洞
Vulnerability Description
Fortinet FortiMail是美国飞塔(Fortinet)公司的一套电子邮件安全网关产品。该产品提供电子邮件安全防护和数据保护等功能。 FortiMail在7.0.0之前存在安全漏洞,该漏洞源于基于身份的加密服务中缺少加密步骤,可能会让拥有加密主密钥的攻击者可利用该漏洞通过观察密文的一些不变属性来破坏其机密性。
CVSS Information
N/A
Vulnerability Type
N/A