CVE-2022-23442

medium

Description

An improper access control vulnerability [CWE-284] in FortiOS versions 6.2.0 through 6.2.11, 6.4.0 through 6.4.8 and 7.0.0 through 7.0.5 may allow an authenticated attacker with a restricted user profile to gather the checksum information about the other VDOMs via CLI commands.

References

https://fortiguard.com/psirt/FG-IR-22-036

Details

Source: MITRE

Published: 2022-08-03

Updated: 2022-08-09

Type: CWE-863