Sensitive User Credential Disclosure in Fortinet FortiWLC

Sensitive User Credential Disclosure in Fortinet FortiWLC

CVE-2016-7561 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

Fortinet FortiWLC 6.1-2-29 and earlier, 7.0-9-1, 7.0-10-0, 8.0-5-0, 8.1-2-0, and 8.2-4-0 allow administrators to obtain sensitive user credentials by reading the pam.log file.

Learn more about our User Device Pen Test.