CVE-2022-41328

Description from NVD

A improper limitation of a pathname to a restricted directory vulnerability ('path traversal') [CWE-22] in Fortinet FortiOS version 7.2.0 through 7.2.3, 7.0.0 through 7.0.9 and before 6.4.11 allows a privileged attacker to read and write files on the underlying Linux system via crafted CLI commands.

Information Acquisition Date:2023-03-17T14:59Z
CVSS 2.0: 0.0 None CVSS 3.x: 7.1 HIGH

▼ CVSS3 Vec CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

NVD References

 https://fortiguard.com/psirt/FG-IR-22-369
     source:MISC
     tags:Vendor Advisory    

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag: Windows(2 tweets) iOS(55 tweets)

List of frequently cited URLs

URLNum of Times Referred to
https://alerts.vulmon.com/?utm_source=twitter&utm_medium=so...195
https://cvetrends.com49
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2...49
https://thehackernews.com/2023/03/fortinet-fortios-flaw-exp...10
https://www.cisa.gov/known-exploited-vulnerabilities-catalog9
https://go.dhs.gov/Z3Q7
https://www.fortinet.com/blog/psirt-blogs/fg-ir-22-369-psir...6
https://www.bleepingcomputer.com/news/security/fortinet-new...4
https://www.securityweek.com/exploitation-of-recent-fortine...3

▼ Show Information from Twitter(106)

List of frequently cited URLs

URLNum of Times Referred to
alerts.vulmon.com195
cvetrends.com49
msrc.microsoft.com49
thehackernews.com10
www.cisa.gov9
go.dhs.gov7
www.fortinet.com6
www.bleepingcomputer.com4
www.securityweek.com3

▼ Show Information from Twitter(106)

GitHub Search Results: Up to 10
NameURL
No Data
GitHub Search Results: Up to 10
NameURL
No Data
2023/03/25 Score : 0
Added Har-sia Database : 2023/03/08
Last Modified : 2023/03/25
Highest Scored Date : 2023/03/14
Highest Score : 34