VYPR
Unrated severityNVD Advisory· Published Mar 7, 2023· Updated Oct 23, 2024

CVE-2022-41329

CVE-2022-41329

Description

An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in Fortinet FortiProxy version 7.2.0 through 7.2.1 and 7.0.0 through 7.0.7, FortiOS version 7.2.0 through 7.2.3 and 7.0.0 through 7.0.9 allows an unauthenticated attackers to obtain sensitive logging informations on the device via crafted HTTP GET requests.

Affected products

4
  • Fortinet/Fortiproxyllm-fuzzy2 versions
    7.2.0 through 7.2.1, 7.0.0 through 7.0.7+ 1 more
    • (no CPE)range: 7.2.0 through 7.2.1, 7.0.0 through 7.0.7
    • (no CPE)range: 7.2.0
  • Fortinet/Fortiosllm-fuzzy2 versions
    7.2.0 through 7.2.3, 7.0.0 through 7.0.9+ 1 more
    • (no CPE)range: 7.2.0 through 7.2.3, 7.0.0 through 7.0.9
    • (no CPE)range: 7.2.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.