What is the vulnerability ID?

The vulnerability ID is CVE-2021-24005.

What is the description of the vulnerability?

The vulnerability involves the usage of hard-coded cryptographic keys to encrypt configuration files and debug logs in FortiAuthenticator versions before 6.3.0, which may allow an attacker to decrypt sensitive data if they have access to the files or the CLI configuration and knowledge of the hard-coded key.

What versions of FortiAuthenticator are affected by this vulnerability?

FortiAuthenticator versions before 6.3.0 are affected by this vulnerability.

What is the severity of CVE-2021-24005?

The severity of CVE-2021-24005 is high with a severity value of 7.5.

How can an attacker exploit this vulnerability?

An attacker with access to the encrypted files or the CLI configuration and knowledge of the hard-coded key can exploit this vulnerability to decrypt sensitive data.

How can I fix the vulnerability in FortiAuthenticator?

To fix the vulnerability, it is recommended to upgrade FortiAuthenticator to version 6.3.0 or later.

Where can I find more information about CVE-2021-24005?

You can find more information about CVE-2021-24005 at the following link: [FortiGuard Advisory FG-IR-20-049](https://fortiguard.com/psirt/FG-IR-20-049).

Vulnerability/
CVE-2021-24005

high

7.5

CWE

798

6/7/2021

25/10/2024

CVE-2021-24005

Q: What is the title of the vulnerability?

The title of the vulnerability is 'Usage of hard-coded cryptographic keys to encrypt configuration files and debug logs in FortiAuthenticator'.

First published: Tue Jul 06 2021(Updated: )

Usage of hard-coded cryptographic keys to encrypt configuration files and debug logs in FortiAuthenticator versions before 6.3.0 may allow an attacker with access to the files or the CLI configuration to decrypt the sensitive data, via knowledge of the hard-coded key.

Credit: psirt@fortinet.com

Affected Software	Affected Version	How to fix
Fortinet FortiAuthenticator	>=6.0.0<6.3.0

Never miss a vulnerability like this again

Reference Links

https://fortiguard.com/psirt/FG-IR-20-049

Frequently Asked Questions

What is the vulnerability ID?
The vulnerability ID is CVE-2021-24005.
What is the title of the vulnerability?
The title of the vulnerability is 'Usage of hard-coded cryptographic keys to encrypt configuration files and debug logs in FortiAuthenticator'.
What is the description of the vulnerability?
The vulnerability involves the usage of hard-coded cryptographic keys to encrypt configuration files and debug logs in FortiAuthenticator versions before 6.3.0, which may allow an attacker to decrypt sensitive data if they have access to the files or the CLI configuration and knowledge of the hard-coded key.
What versions of FortiAuthenticator are affected by this vulnerability?
FortiAuthenticator versions before 6.3.0 are affected by this vulnerability.
What is the severity of CVE-2021-24005?
The severity of CVE-2021-24005 is high with a severity value of 7.5.
How can an attacker exploit this vulnerability?
An attacker with access to the encrypted files or the CLI configuration and knowledge of the hard-coded key can exploit this vulnerability to decrypt sensitive data.
How can I fix the vulnerability in FortiAuthenticator?
To fix the vulnerability, it is recommended to upgrade FortiAuthenticator to version 6.3.0 or later.
Where can I find more information about CVE-2021-24005?
You can find more information about CVE-2021-24005 at the following link: [FortiGuard Advisory FG-IR-20-049](https://fortiguard.com/psirt/FG-IR-20-049).

collector/nvd-index
agent/author
agent/severity
agent/weakness
agent/references
agent/type
agent/event
agent/softwarecombine
agent/first-publish-date
agent/last-modified-date
agent/description
agent/tags
collector/mitre-cve
source/MITRE
vendor/fortinet
canonical/fortinet fortiauthenticator
version/fortinet fortiauthenticator/6.0.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.