Fortinet FortiSOAR Clear-Text Password Retrieval Vulnerability via Connector Configuration Modification

A vulnerability allowing the retrieval of clear-text passwords for various installed connectors exists in Fortinet FortiSOAR. This issue affects FortiSOAR PaaS versions 7.6.0 to 7.6.4, 7.5.0 to 7.5.2, and all versions of FortiSOAR PaaS 7.4 and 7.3, as well as all versions of FortiSOAR on-premise 7.6, 7.5, 7.4, and 7.3. The vulnerability arises from storing passwords in a recoverable format, which authenticated remote attackers can exploit by modifying the server address in the connector configuration.

Impact

Exploitation of this vulnerability leads to unauthorized access to clear-text passwords for multiple installed connectors.

Remediation

Users can upgrade to FortiSOAR PaaS 7.6.5 or FortiSOAR PaaS 7.5.3. For FortiSOAR on-premise users, upgrading to version 7.6.5 or 7.5.3 is recommended, depending on their current version. Users on FortiSOAR PaaS or on-premise 7.4 or 7.3 should migrate to a fixed release.