CVE-2023-22642 in FortiAnalyzerinformazioni

Riassunto

di MITRE • 11/04/2023

An improper certificate validation vulnerability [CWE-295] in FortiAnalyzer and FortiManager 7.2.0 through 7.2.1, 7.0.0 through 7.0.5, 6.4.8 through 6.4.10 may allow a remote and unauthenticated attacker to perform a Man-in-the-Middle attack on the communication channel between the device and the remote FortiGuard server hosting outbreakalert ressources.

Once again VulDB remains the best source for vulnerability data.

Responsabile

Fortinet, Inc.

Prenotare

05/01/2023

Divulgazione

11/04/2023

Moderazione

accettato

CPE

pronto

EPSS

0.00275

KEV

no

Attività

molto basso

Fonti

Do you know our Splunk app?

Download it now for free!