CVE-2026-22574

April 14, 2026, 4:16 p.m.

4.1
Medium

Description

A storing passwords in a recoverable format vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.4, FortiSOAR PaaS 7.5.0 through 7.5.2, FortiSOAR PaaS 7.4 all versions, FortiSOAR PaaS 7.3 all versions, FortiSOAR on-premise 7.6.0 through 7.6.4, FortiSOAR on-premise 7.5.0 through 7.5.2, FortiSOAR on-premise 7.4 all versions, FortiSOAR on-premise 7.3 all versions may allow an authenticated remote attacker to retrieve Service account password via server address modification in LDAP configuration.

Product(s) Impacted

Vendor Product Versions
Fortinet
  • Fortisoar Paas
  • Fortisoar On-premise
  • 7.6.0-7.6.4, 7.5.0-7.5.2, 7.4, 7.3
  • 7.6.0-7.6.4, 7.5.0-7.5.2, 7.4, 7.3

Weaknesses

Common security weaknesses mapped to this vulnerability.

CWE-257
Storing Passwords in a Recoverable Format
The storage of passwords in a recoverable format makes them subject to password reuse attacks by malicious users. In fact, it should be noted that recoverable encrypted passwords provide no significant benefit over plaintext passwords since they are subject not only to reuse by malicious attackers but also by malicious insiders. If a system administrator can recover a password directly, or use a brute force search on the available information, the administrator can use the password on other accounts.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
a fortinet fortisoar_paas 7.6.0-7.6.4 / / / / / / /
a fortinet fortisoar_paas 7.5.0-7.5.2 / / / / / / /
a fortinet fortisoar_paas 7.4 / / / / / / /
a fortinet fortisoar_paas 7.3 / / / / / / /
a fortinet fortisoar_on-premise 7.6.0-7.6.4 / / / / / / /
a fortinet fortisoar_on-premise 7.5.0-7.5.2 / / / / / / /
a fortinet fortisoar_on-premise 7.4 / / / / / / /
a fortinet fortisoar_on-premise 7.3 / / / / / / /

References

https://fortiguard.fortinet.com/psirt/FG-IR-26-105

Tags

CWE-257
[email protected]
2026-04-14
CVE-2026-22574

CVSS Score

4.1 / 10

CVSS Data - 3.1

  • Attack Vector: NETWORK
  • Attack Complexity: LOW
  • Privileges Required: HIGH
  • Scope: CHANGED
  • Confidentiality Impact: LOW
  • Integrity Impact: NONE
  • Availability Impact: NONE

    • CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N

    View Vector String

Timeline

Published: April 14, 2026, 4:16 p.m.
Last Modified: April 14, 2026, 4:16 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

[email protected]

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.