vulnerability
Fortinet FortiOS: Storing Passwords in a Recoverable Format (CVE-2024-32122)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 1 | (AV:L/AC:L/Au:M/C:P/I:N/A:N) | Apr 8, 2025 | Jul 21, 2025 | Mar 30, 2026 |
Severity
1
CVSS
(AV:L/AC:L/Au:M/C:P/I:N/A:N)
Published
Apr 8, 2025
Added
Jul 21, 2025
Modified
Mar 30, 2026
Description
A storing passwords in a recoverable format in Fortinet FortiOS 7.4.0 through 7.4.8, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions allows attacker to information disclosure via modification of LDAP server IP to point to a malicious server.
Solution
fortios-upgrade-latest
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.