CVE-2026-21742
MediumCVSS 5.7Exploitation Probability (EPSS)
Low risk4th percentile - higher than 4% of all known CVEs
Summary
A cleartext transmission of sensitive information vulnerability in Fortinet FortiSOAR (PaaS and on-premise versions) allows an authenticated attacker to view cleartext passwords in responses to Secure Message Exchange and Radius queries, if configured. The issue involves sending sensitive data in an unencrypted form.
Risk Assessment
The organization is at risk of password leakage used in integrations with Secure Message Exchange and Radius, potentially leading to unauthorized system access and privilege escalation.
Recommendation
Immediately update FortiSOAR to a patched version (e.g., 7.6.4 or later for PaaS and 7.6.3 for on-premise) and review Secure Message Exchange and Radius configurations to ensure passwords are not stored in cleartext.
Original NVD description (English source)
A cleartext transmission of sensitive information vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.3, FortiSOAR PaaS 7.5.0 through 7.5.2, FortiSOAR PaaS 7.4 all versions, FortiSOAR PaaS 7.3 all versions, FortiSOAR on-premise 7.6.0 through 7.6.2, FortiSOAR on-premise 7.5.0 through 7.5.1, FortiSOAR on-premise 7.4 all versions, FortiSOAR on-premise 7.3 all versions may allow an authenticated attacker to view cleartext password in response for Secure Message Exchange and Radius queries, if configured

