cnvd - cnvd-2023-98186

cnvd-2023-98186

Vulnerability from cnvd

Title

Fortinet FortiSIEM信息泄露漏洞（CNVD-2023-98186）

Description

Fortinet FortiSIEM是美国飞塔（Fortinet）公司的一套安全信息和事件管理系统。该系统包括资产发现、工作流程自动化和统一管理等功能。 Fortinet FortiSIEM存在信息泄露漏洞，该漏洞源于将敏感信息暴露给未经授权的行为者。有权访问Windows Agent日志的攻击者可利用该漏洞通过搜索日志获取Windows Agent密码。

Severity

中

Patch Name

Fortinet FortiSIEM信息泄露漏洞（CNVD-2023-98186）的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://fortiguard.com/psirt/FG-IR-23-290

Reference

https://nvd.nist.gov/vuln/detail/CVE-2023-41676

Impacted products

Name
['Fortinet FortiSIEM 7.0.0', 'Fortinet FortiSIEM >=6.7.0，<=6.7.5']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2023-41676",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2023-41676"
    }
  },
  "description": "Fortinet FortiSIEM\u662f\u7f8e\u56fd\u98de\u5854\uff08Fortinet\uff09\u516c\u53f8\u7684\u4e00\u5957\u5b89\u5168\u4fe1\u606f\u548c\u4e8b\u4ef6\u7ba1\u7406\u7cfb\u7edf\u3002\u8be5\u7cfb\u7edf\u5305\u62ec\u8d44\u4ea7\u53d1\u73b0\u3001\u5de5\u4f5c\u6d41\u7a0b\u81ea\u52a8\u5316\u548c\u7edf\u4e00\u7ba1\u7406\u7b49\u529f\u80fd\u3002\n\nFortinet FortiSIEM\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5c06\u654f\u611f\u4fe1\u606f\u66b4\u9732\u7ed9\u672a\u7ecf\u6388\u6743\u7684\u884c\u4e3a\u8005\u3002\u6709\u6743\u8bbf\u95eeWindows Agent\u65e5\u5fd7\u7684\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u641c\u7d22\u65e5\u5fd7\u83b7\u53d6Windows Agent\u5bc6\u7801\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://fortiguard.com/psirt/FG-IR-23-290",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2023-98186",
  "openTime": "2023-12-21",
  "patchDescription": "Fortinet FortiSIEM\u662f\u7f8e\u56fd\u98de\u5854\uff08Fortinet\uff09\u516c\u53f8\u7684\u4e00\u5957\u5b89\u5168\u4fe1\u606f\u548c\u4e8b\u4ef6\u7ba1\u7406\u7cfb\u7edf\u3002\u8be5\u7cfb\u7edf\u5305\u62ec\u8d44\u4ea7\u53d1\u73b0\u3001\u5de5\u4f5c\u6d41\u7a0b\u81ea\u52a8\u5316\u548c\u7edf\u4e00\u7ba1\u7406\u7b49\u529f\u80fd\u3002\r\n\r\nFortinet FortiSIEM\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5c06\u654f\u611f\u4fe1\u606f\u66b4\u9732\u7ed9\u672a\u7ecf\u6388\u6743\u7684\u884c\u4e3a\u8005\u3002\u6709\u6743\u8bbf\u95eeWindows Agent\u65e5\u5fd7\u7684\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u641c\u7d22\u65e5\u5fd7\u83b7\u53d6Windows Agent\u5bc6\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Fortinet FortiSIEM\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2023-98186\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Fortinet FortiSIEM 7.0.0",
      "Fortinet FortiSIEM \u003e=6.7.0\uff0c\u003c=6.7.5"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2023-41676",
  "serverity": "\u4e2d",
  "submitTime": "2023-11-17",
  "title": "Fortinet FortiSIEM\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2023-98186\uff09"
}

CVE-2023-41676 (GCVE-0-2023-41676)

Vulnerability from cvelistv5

Published

2023-11-14 18:05

Modified

2024-08-30 18:13

Severity ?

4.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:F/RC:C

CWE

CWE-200 - Information disclosure

Summary

An exposure of sensitive information to an unauthorized actor [CWE-200] in FortiSIEM version 7.0.0 and before 6.7.5 may allow an attacker with access to windows agent logs to obtain the windows agent password via searching through the logs.

References

URL

Tags

https://fortiguard.com/psirt/FG-IR-23-290