← Back to CVE List

CVE-2022-40684

Published: 2022-10-18T14:15Z
Last Modified: 2025-02-19T19:37Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
An authentication bypass using an alternate path or channel [CWE-288] in Fortinet FortiOS version 7.2.0 through 7.2.1 and 7.0.0 through 7.0.6, FortiProxy version 7.2.0 and version 7.0.0 through 7.0.6 and FortiSwitchManager version 7.2.0 and 7.0.0 allows an unauthenticated atttacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt