Vulnerability Details CVE-2021-32600
An exposure of sensitive information to an unauthorized actor vulnerability in FortiOS CLI 7.0.0, 6.4.0 through 6.4.6, 6.2.0 through 6.2.9, 6.0.x and 5.6.x may allow a local and authenticated user assigned to a specific VDOM to retrieve other VDOMs information such as the admin account list and the network interface list.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 32.6%
CVSS Severity
CVSS v3 Score 5.0
CVSS v2 Score 2.1
References
Products affected by CVE-2021-32600
-
cpe:2.3:o:fortinet:fortios:5.6.0
-
cpe:2.3:o:fortinet:fortios:5.6.1
-
cpe:2.3:o:fortinet:fortios:5.6.2
-
cpe:2.3:o:fortinet:fortios:5.6.3
-
cpe:2.3:o:fortinet:fortios:5.6.4
-
cpe:2.3:o:fortinet:fortios:5.6.5
-
cpe:2.3:o:fortinet:fortios:5.6.6
-
cpe:2.3:o:fortinet:fortios:5.6.7
-
cpe:2.3:o:fortinet:fortios:5.6.8
-
cpe:2.3:o:fortinet:fortios:5.6.9
-
cpe:2.3:o:fortinet:fortios:6.0.0
-
cpe:2.3:o:fortinet:fortios:6.0.1
-
cpe:2.3:o:fortinet:fortios:6.0.10
-
cpe:2.3:o:fortinet:fortios:6.0.11
-
cpe:2.3:o:fortinet:fortios:6.0.12
-
cpe:2.3:o:fortinet:fortios:6.0.13
-
cpe:2.3:o:fortinet:fortios:6.0.2
-
cpe:2.3:o:fortinet:fortios:6.0.3
-
cpe:2.3:o:fortinet:fortios:6.0.4
-
cpe:2.3:o:fortinet:fortios:6.0.5
-
cpe:2.3:o:fortinet:fortios:6.0.6
-
cpe:2.3:o:fortinet:fortios:6.0.7
-
cpe:2.3:o:fortinet:fortios:6.0.8
-
cpe:2.3:o:fortinet:fortios:6.0.9
-
cpe:2.3:o:fortinet:fortios:6.2.0
-
cpe:2.3:o:fortinet:fortios:6.2.1
-
cpe:2.3:o:fortinet:fortios:6.2.2
-
cpe:2.3:o:fortinet:fortios:6.2.3
-
cpe:2.3:o:fortinet:fortios:6.2.4
-
cpe:2.3:o:fortinet:fortios:6.2.5
-
cpe:2.3:o:fortinet:fortios:6.2.6
-
cpe:2.3:o:fortinet:fortios:6.2.7
-
cpe:2.3:o:fortinet:fortios:6.2.8
-
cpe:2.3:o:fortinet:fortios:6.2.9
-
cpe:2.3:o:fortinet:fortios:6.4.0
-
cpe:2.3:o:fortinet:fortios:6.4.1
-
cpe:2.3:o:fortinet:fortios:6.4.2
-
cpe:2.3:o:fortinet:fortios:6.4.3
-
cpe:2.3:o:fortinet:fortios:6.4.4
-
cpe:2.3:o:fortinet:fortios:6.4.5
-
cpe:2.3:o:fortinet:fortios:6.4.6
-
cpe:2.3:o:fortinet:fortios:7.0.0