CVE-2019-5591 - Fortinet FortiOS Default Configuration Vulnerability
Project:Fortinet
Product:FortiOS
Date Added:2021-11-03Due Date:2022-05-03
Vulnerability Name
Fortinet FortiOS Default Configuration Vulnerability
Description
Fortinet FortiOS contains a default configuration vulnerability that may allow an unauthenticated attacker on the same subnet to intercept sensitive information by impersonating the Lightweight Directory Access Protocol (LDAP) server.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2019-5591