Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A use of hard-coded credentials vulnerability [CWE-798] in FortiTester 2.3.0 through 7.2.3 may allow an attacker who managed to get a shell on the device to access the database via shell commands.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
使用硬编码的凭证
Vulnerability Title
FortiTester 信任管理问题漏洞
Vulnerability Description
FortiTester是FortiTester公司的一款基于 Fortinet 专业的网络流量测试工具。 FortiTester 2.3.0版本至7.2.3版本存在安全漏洞,该漏洞源于存在硬编码凭据漏洞,可能允许成功在设备上获取shell的攻击者通过shell命令访问数据库。
CVSS Information
N/A
Vulnerability Type
N/A