FortiSIEM - Windows agent password is visible in the logs
Summary
An exposure of sensitive information to an unauthorized actor [CWE-200] in FortiSIEM may allow an attacker with access to windows agent logs to obtain the windows agent password via searching through the logs.
Affected Products
FortiSIEM version 7.0.0
FortiSIEM version 6.7.0 through 6.7.5
Solutions
Please upgrade to FortiSIEM version 7.1.0 or above
Please upgrade to FortiSIEM version 7.0.1 or above
Please upgrade to FortiSIEM version 6.7.6 or above