How severe is CVE-2022-41331?

CVE-2022-41331 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2022-41331

Name: fortiproxy
Author: fortinet

9.8CRITICAL

A missing authentication for critical function vulnerability [CWE-306] in FortiPresence infrastructure server before version 1.2.1 allows a remote, unauthenticated attacker to access the Redis and Mon

게시됨: 4/11/2023업데이트됨: 11/21/2024

설명

A missing authentication for critical function vulnerability [CWE-306] in FortiPresence infrastructure server before version 1.2.1 allows a remote, unauthenticated attacker to access the Redis and MongoDB instances via crafted authentication requests.

AI 분석AI 기반

영향받는 제품

fortinetfortiproxy

참조

https://fortiguard.com/psirt/FG-IR-22-355
Vendor Advisory
https://fortiguard.com/psirt/FG-IR-22-355
Vendor Advisory