FortiOS - Flaws over krb keytab encryption scheme
A missing cryptographic steps vulnerability [CWE-325] in the functions that encrypt the keytab files in FortiOS may allow an attacker in possession of the encrypted file to decipher it.
Affected ProductsAt least
FortiOS version 7.2.0
FortiOS version 7.0.0 through 7.0.5
FortiOS version 6.4.0 through 6.4.10
FortiOS version 6.2.0 through 6.2.11
FortiOS version 6.0.0 through 6.0.15
Upgrade to FortiOS version 7.2.1 or above.
Upgrade to FortiOS version 7.0.6 or above.