CVE-2022-42476 - CERT CVE
ID CVE-2022-42476
Sažetak A relative path traversal vulnerability [CWE-23] in Fortinet FortiOS version 7.2.0 through 7.2.2, 7.0.0 through 7.0.8 and before 6.4.11, FortiProxy version 7.2.0 through 7.2.2 and 7.0.0 through 7.0.8 allows privileged VDOM administrators to escalate their privileges to super admin of the box via crafted CLI requests.
Reference
CVSS
Base: 8.2
Impact: 6.0
Exploitability:1.5
Pristup
VektorSloženostAutentikacija
LOCAL LOW -
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH HIGH
CVSS vektor CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Zadnje važnije ažuriranje 07-11-2023 - 03:53
Objavljeno 07-03-2023 - 17:15