PSIRT Advisory

FortiSIEM external authentication password reflected in external authentication profile

Summary

An information exposure vulnerability in the external authentication profile form of FortiSIEM may allow an authenticated attacker to retrieve the external authentication password via the HTML source code.This could potentially aggravate attacks targeting the authenticated admin session, should they exist (XSS, social engineering, proxy caching...).

Impact

Information disclosure

Affected Products

FortiSIEM version 5.2.2 and below

Solutions

Please upgrade to FortiSIEM version 5.2.5 and above

Acknowledgement

Fortinet is pleased to thank Yavuz YUKSEL security researcher for reporting this vulnerability under responsible disclosure.