216.73.216.233

CVE-2022-40684

· Published 11/10/2022 02:00 · Modified 14/01/2026 23:41 · Author: Cybersecurity and Infrastructure Security Agency

Labels: CVE-2022-40684

Essential information

Published
11/10/2022 02:00
Modified
14/01/2026 23:41
Author
Cybersecurity and Infrastructure Security Agency
Creator
Cybersecurity and Infrastructure Security Agency
CVSS
9.8 CRITICAL (v3.1)
CISA KEV
Yes
CWE
CVSS vector
CVSS:3.1/AV:N/C:H/I:H/A:H

CVSS metrics

Description

Fortinet FortiOS, FortiProxy, and FortiSwitchManager contain an authentication bypass vulnerability that could allow an unauthenticated attacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests.

NVD status

NVD
View on NVD

Related entities

Attack reports, intrusion sets, malwares, attack patterns and indicators linked to this vulnerability.

Attack reports (1)