VYPR
Unrated severityNVD Advisory· Published Feb 16, 2023· Updated Oct 22, 2024

CVE-2022-29054

CVE-2022-29054

Description

A missing cryptographic steps vulnerability [CWE-325] in the functions that encrypt the DHCP and DNS keys in Fortinet FortiOS version 7.2.0, 7.0.0 through 7.0.5, 6.4.0 through 6.4.9, 6.2.x and 6.0.x may allow an attacker in possession of the encrypted key to decipher it.

Affected products

3
  • Fortinet/Fortiosllm-fuzzy2 versions
    7.2.0, 7.0.0 - 7.0.5, 6.4.0 - 6.4.9, 6.2.x, 6.0.x+ 1 more
    • (no CPE)range: 7.2.0, 7.0.0 - 7.0.5, 6.4.0 - 6.4.9, 6.2.x, 6.0.x
    • (no CPE)range: 7.2.0
  • Range: 7.2.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.