CVE-2022-3217 – When logging in to a VBASE runtime project via Web-Remote, the product uses XOR with a sta …

16 September 2022

Vuln ID: CVE-2022-3217

Published: 2022-09-16 22:15:12Z

Description: When logging in to a VBASE runtime project via Web-Remote, the product uses XOR with a static initial key to obfuscate login messages. An unauthenticated remote attacker with the ability to capture a login session can obtain the login credentials.

Source: NVD.NIST.GOV

Date:

16 September 2022

Categorie(s):

NVD

Tag(s):

NVD

Fortinet named a Challenger in the 2024 Gartner® Magic Quadrant™ for Security Service Edge20 April 2024
AI-Controlled Fighter Jets Are Dogfighting With Human Pilots Now20 April 2024
Phishing Scams in the Gaming Community20 April 2024
Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks20 April 2024
Palo Alto Networks Discloses More Details on Critical PAN-OS Flaw Under Attack20 April 2024