diff --git a/file/audit/fortigate/maintainer-account.yaml b/file/audit/fortigate/maintainer-account.yaml index afad089999..8c90e09c84 100644 --- a/file/audit/fortigate/maintainer-account.yaml +++ b/file/audit/fortigate/maintainer-account.yaml @@ -1,11 +1,15 @@ id: maintainer-account info: - name: Maintainer Account Not Implemented + name: Fortinet Maintainer Account - Detect author: pussycat0x severity: info - description: If the FortiGate is compromised and Password is not recoverable. A maintainer account can be used by an administrator with physical access to log into CLI.. + description: In Fortinet, if a FortiGate is compromised and the password is not recoverable, a maintainer account can be used by an administrator with physical access to log into CLI. reference: https://docs.fortinet.com/document/fortigate/6.4.0/hardening-your-fortigate/612504/hardening-your-fortigate + classification: + cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0.0 + cwe-id: CWE-200 tags: audit,config,file,firewall,fortigate file: @@ -25,3 +29,5 @@ file: - "config router" - "config firewall" condition: or + +# Enhanced by md on 2023/05/03