PSIRT Advisory

FortiSIEM LDAP server password reflected in admin portal

Summary

An information exposure vulnerability in the admin portal of FortiSIEM may allow an authenticated admin to retrieve the LDAP server password via the HTML source code. This could potentially aggravate attacks targeting the authenticated admin session, should they exist (XSS, social engineering, proxy caching...).

Impact

Information Disclosure

Affected Products

FortiSIEM 5.2.0 and below

Solutions

Upgrade to FortiSIEM 5.2.1

Acknowledgement

Fortinet is pleased to thank Yusuf TOPAL from Beyaz Bilgisayar Danismanlik Hizmetleri Ltd. Sti. for reporting this vulnerability under responsible disclosure.