LDAP Server Plaintext Password Exposure in Fortinet FortiSIEM 5.2.0 and Below Versions

LDAP Server Plaintext Password Exposure in Fortinet FortiSIEM 5.2.0 and Below Versions

CVE-2018-13378 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

An information disclosure vulnerability in Fortinet FortiSIEM 5.2.0 and below versions exposes the LDAP server plaintext password via the HTML source code.

Learn more about our Cis Benchmark Audit For Fortinet.