CVE-2017-7737
CVE-2017-7737
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
10 Aug 2017Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An information disclosure vulnerability in Fortinet FortiWeb 5.8.2 and below versions allows logged-in admin user to view SNMPv3 user password in cleartext in webui via the HTML source code.
Affected products
Fortinet, Inc. · Fortinet FortiWeb