Detections
Analytics
CVE-2022-40684
critical
Description
An authentication bypass using an alternate path or channel [CWE-288] in Fortinet FortiOS version 7.2.0 through 7.2.1 and 7.0.0 through 7.0.6, FortiProxy version 7.2.0 and version 7.0.0 through 7.0.6 and FortiSwitchManager version 7.2.0 and 7.0.0 allows an unauthenticated atttacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests.
From the Tenable Blog
CVE-2022-40684: Critical Authentication Bypass in FortiOS and FortiProxy
Published: 2022-10-07
Fortinet has patched a critical authentication bypass in its FortiOS and FortiProxy products that could lead to administrator access.
References
https://www.securityweek.com/are-threat-groups-belsen-and-zerosevengroup-related/
https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-215a
https://www.tenable.com/cyber-exposure/tenable-2022-threat-landscape-report
https://www.horizon3.ai/attack-research/attack-blogs/fortinet-iocs-cve-2022-40684/
Details
Published: 2022-10-18
Updated: 2025-02-19
Named Vulnerability: Fortinet FortiOS Authentication Bypass (FortiGate, FortiProxy, FortiSwitch Manager)Known Exploited Vulnerability (KEV)
Risk Information
CVSS v2
Base Score: 10
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Severity: Critical
CVSS v3
Base Score: 9.8
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: Critical
EPSS
EPSS: 0.94427