Fortinet Fortiauthenticator vulnerabilities

CVE-2015-1456 [MEDIUM] CWE-200 CVE-2015-1456: Fortinet FortiAuthenticator 3.0.0 logs the PostgreSQL usernames and passwords in cleartext, which al Fortinet FortiAuthenticator 3.0.0 logs the PostgreSQL usernames and passwords in cleartext, which allows remote administrators to obtain sensitive information by reading the log at debug/startup/.

CVE-2013-6990 [CRITICAL] CWE-264 CVE-2013-6990: FortiGuard FortiAuthenticator before 3.0 allows remote administrators to gain privileges via the com FortiGuard FortiAuthenticator before 3.0 allows remote administrators to gain privileges via the command line interface.