Tag

#credentials

2 posts tagged #credentials.

Analysis · May 20, 2026 · analysis-desk

The 'test connection' button that mails your stored credentials to an attacker

CVE-2018-13374 lets an attacker recover the LDAP bind credentials stored in a FortiGate by pointing its LDAP connectivity test at a rogue server. It's a small bug with a broad lesson: 'test connection' features that transmit stored secrets are a credential-disclosure pattern.
Analysis · May 20, 2026 · operations-desk

Ivanti Endpoint Manager: the management server that can be coerced into handing over credentials

CVE-2024-13159, 13160, and 13161 are path-traversal/credential-coercion flaws in Ivanti Endpoint Manager that let an attacker make the EPM server authenticate to them and relay it. It's another Ivanti product, and another privileged management server worth defending as tier-zero.