CVE-2019-5591
Fortinet / FortiOS
Added 2021-11-03
Due 2022-05-03
Fortinet FortiOS Default Configuration Vulnerability
Fortinet FortiOS contains a default configuration vulnerability that may allow an unauthenticated attacker on the same subnet to intercept sensitive information by impersonating the Lightweight Directory Access Protocol (LDAP) server.
Required action
Apply updates per vendor instructions.
Notes: https://nvd.nist.gov/vuln/detail/CVE-2019-5591
Metadata
| Added to KEV | 2021-11-03 |
| Remediation due | 2022-05-03 |
| Ransomware use | Unknown |
| CWEs | CWE-306 |
| Ingested | 2026-04-24 15:03:13 |
Cross-mesh regulatory overlay
If you're breached via this CVE, what disclosure laws and cyber regs fire? Asks LexiWorld and RegulatoryRadar via signed mesh.