|Number of vulnerabilities||1|
|CVE ID|| CVE-2016-7542
|CWE ID|| CWE-200
|Public exploit||Not available|
|Vulnerable software versions||
|Vendor URL||Fortinet, Inc|
The vulnerability allows a remote attacker to obtain hash of local administrator.
The vulnerability exists due to unknown error. A remote attacker with unspecified privileges may be able to obtain password hash of local administrator. It is unclear, if the attacker should be authenticated.
Successful exploitation of the vulnerability may allow an attacker to brute-force password hash and obtain administrative privileges on vulnerable device.
The vulnerability is fixed in versions 5.2.10 GA and 5.4.2 GA.External links