CVE-2022-41328

high

Description

A improper limitation of a pathname to a restricted directory vulnerability ('path traversal') [CWE-22] in Fortinet FortiOS version 7.2.0 through 7.2.3, 7.0.0 through 7.0.9 and before 6.4.11 allows a privileged attacker to read and write files on the underlying Linux system via crafted CLI commands.

References

https://www.bleepingcomputer.com/news/security/chinese-cyberspies-backdoor-juniper-routers-for-stealthy-access/

https://securityaffairs.com/175308/apt/china-linked-apt-unc3886-targets-eol-juniper-routers.html

https://cloud.google.com/blog/topics/threat-intelligence/china-nexus-espionage-targets-juniper-routers

https://www.aha.org/system/files/media/file/2024/10/hc3%20tlp%20clear%20threat%20actor%20profile%20scattered%20spider-10-24-2024.pdf

https://thehackernews.com/2024/06/chinese-cyber-espionage-group-exploits.html

https://cloud.google.com/blog/topics/threat-intelligence/uncovering-unc3886-espionage-operations

https://storage.googleapis.com/gweb-uniblog-publish-prod/documents/Year_in_Review_of_ZeroDays.pdf

https://meterpreter.org/cve-2023-34048-inside-the-zero-day-vulnerability-exploited-by-unc3886/

https://www.bleepingcomputer.com/news/security/chinese-hackers-exploit-vmware-bug-as-zero-day-for-two-years/

https://thehackernews.com/2023/03/from-ransomware-to-cyber-espionage-55.html

https://www.mandiant.com/resources/blog/zero-days-exploited-2022

https://www.tenable.com/blog/volt-typhoon-cybersecurity-advisory

https://fortiguard.com/psirt/FG-IR-22-369

Details

Source: Mitre, NVD

Published: 2023-03-07

Updated: 2025-02-24

Named Vulnerability: MOPSLEDKnown Exploited Vulnerability (KEV)

Risk Information

CVSS v2

Base Score: 6.2

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:N

Severity: Medium

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Severity: High

EPSS

EPSS: 0.00111