- Description
- A Cleartext Storage of Sensitive Information vulnerability [CWE-312] in FortiClientWindows 7.4.0 through 7.4.1, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13 and FortiClientLinux 7.4.0 through 7.4.2, 7.2.0 through 7.2.7, 7.0.0 through 7.0.13 may permit a local authenticated user to retrieve VPN password via memory dump, due to JavaScript's garbage collector
- Source
- psirt@fortinet.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 5
- Impact score
- 4
- Exploitability score
- 0.6
- Vector string
- CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:N/A:N
- Severity
- MEDIUM
- Hype score
- Not currently trending
Fortinet fixes several vulnerabilities including CVE-2023-34990 #Fortinet #CVE-2023-34990 #CVE-2024-50570 #CVE-2024-48889 https://t.co/jEOWPiIZpJ
@pravin_karthik
19 Dec 2024
35 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-50570 A Cleartext Storage of Sensitive Information vulnerability [CWE-312] in FortiClientWindows 7.4.0 through 7.4.1, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13 and FortiClientLinux 7.4.0 through 7.4.2, 7.2.0 through 7.2.7, 7.0.0 through 7.0.13 may permit a local… https:
@Cyberwald_talks
18 Dec 2024
28 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes