Use of a Broken or Risky Cryptographic Algorithm

Summary

A use of a broken or risky cryptographic algorithm [CWE-327] in FortiSIEM may allow a remote unauthenticated attacker to perform brute force attacks on GUI endpoints via taking advantage of outdated hashing methods.

Affected Products

FortiSIEM version 6.7.0 through 6.7.1
FortiSIEM 6.6 all versions
FortiSIEM 6.5 all versions
FortiSIEM 6.4 all versions
FortiSIEM 6.3 all versions
FortiSIEM 6.2 all versions
FortiSIEM 6.1 all versions
FortiSIEM 5.4 all versions
FortiSIEM 5.3 all versions

Solutions

Please upgrade to FortiSIEM version 7.0.0 or above
Please upgrade to FortiSIEM version 6.7.2 or above

Acknowledgement

Internally discovered and reported by Théo Leleu and Austin Stark of Fortinet Product Security team.

Timeline

2023-06-12: Initial publication