CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-41676

An exposure of sensitive information to an unauthorized actor [CWE-200] in FortiSIEM version 7.0.0 and before 6.7.5 may allow an attacker with access to windows agent logs to obtain the windows agent password via searching through the logs.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.4%

CVSS Severity

CVSS v3 Score 4.3

References

https://fortiguard.com/psirt/FG-IR-23-290
https://fortiguard.com/psirt/FG-IR-23-290

Products affected by CVE-2023-41676

Fortinet » Fortisiem » Version: 6.7.0

cpe:2.3:a:fortinet:fortisiem:6.7.0
Fortinet » Fortisiem » Version: 6.7.1

cpe:2.3:a:fortinet:fortisiem:6.7.1
Fortinet » Fortisiem » Version: 6.7.2

cpe:2.3:a:fortinet:fortisiem:6.7.2
Fortinet » Fortisiem » Version: 6.7.3

cpe:2.3:a:fortinet:fortisiem:6.7.3
Fortinet » Fortisiem » Version: 6.7.4

cpe:2.3:a:fortinet:fortisiem:6.7.4
Fortinet » Fortisiem » Version: 6.7.5

cpe:2.3:a:fortinet:fortisiem:6.7.5
Fortinet » Fortisiem » Version: 7.0.0

cpe:2.3:a:fortinet:fortisiem:7.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-41676

Products

Pricing

Contact Us