VYPR
Unrated severityNVD Advisory· Published Feb 16, 2023· Updated Oct 22, 2024

CVE-2022-30300

CVE-2022-30300

Description

A relative path traversal vulnerability [CWE-23] in FortiWeb 7.0.0 through 7.0.1, 6.3.6 through 6.3.18, 6.4 all versions may allow an authenticated attacker to obtain unauthorized access to files and data via specifically crafted HTTP GET requests.

Affected products

2
  • Fortinet/Fortiwebllm-fuzzy2 versions
    >=6.3.6 <=6.3.18 OR =6.4.* OR >=7.0.0 <=7.0.1+ 1 more
    • (no CPE)range: >=6.3.6 <=6.3.18 OR =6.4.* OR >=7.0.0 <=7.0.1
    • (no CPE)range: 7.0.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.