How severe is CVE-2022-41327?

CVE-2022-41327 has a CVSS v3 score of 7.8 (HIGH).

CVE-2022-41327

Name: fortios
Author: fortinet

7.8HIGH

A cleartext transmission of sensitive information vulnerability [CWE-319] in Fortinet FortiOS version 7.2.0 through 7.2.4, 7.0.0 through 7.0.8, FortiProxy version 7.2.0 through 7.2.1 and 7.0.0 through

Опубликовано: 6/13/2023Обновлено: 11/21/2024

Описание

A cleartext transmission of sensitive information vulnerability [CWE-319] in Fortinet FortiOS version 7.2.0 through 7.2.4, 7.0.0 through 7.0.8, FortiProxy version 7.2.0 through 7.2.1 and 7.0.0 through 7.0.8 allows an authenticated attacker with readonly superadmin privileges to intercept traffic in order to obtain other adminstrators cookies via diagnose CLI commands.

ИИ-АнализНа базе ИИ

Затронутые продукты

fortinetfortiproxy

7.2.0

fortinetfortiproxy

7.2.1

fortinetfortios

Ссылки

https://fortiguard.com/psirt/FG-IR-22-380
Vendor Advisory
https://fortiguard.com/psirt/FG-IR-22-380
Vendor Advisory