Credential disclosure in LDAP configuration web page.

CVSSv3 Score: 2.5

An Insufficiently protected credentials vulnerability [CWE-522] in FortiSanbox and FortiSanbox PaaS GUI may allow an authenticated administrator to read LDAP server credentials via client-side inspection.

Revised on 2026-04-14 00:00:00

– Read more