CVE-2022-40684: Authentication bypass in administrative interface
First published: Mon Oct 10 2022(Updated: )
An authentication bypass using an alternate path or channel [CWE-288] in Fortinet FortiOS version 7.2.0 through 7.2.1 and 7.0.0 through 7.0.6, FortiProxy version 7.2.0 and version 7.0.0 through 7.0.6 and FortiSwitchManager version 7.2.0 and 7.0.0 allows an unauthenticated atttacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests.
Credit: psirt@fortinet.com psirt@fortinet.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Fortinet FortiProxy | >=7.0.0<7.0.7 | |
| Fortinet FortiProxy | =7.2.0 | |
| Fortinet FortiSwitchManager | =7.0.0 | |
| Fortinet FortiSwitchManager | =7.2.0 | |
| Fortinet FortiOS | >=7.0.0<7.0.7 | |
| Fortinet FortiOS | >=7.2.0<7.2.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.theregister.com/2024/03/18/more_than_133000_fortinet_appliances/
- http://packetstormsecurity.com/files/169431/Fortinet-FortiOS-FortiProxy-FortiSwitchManager-Authentication-Bypass.html
- http://packetstormsecurity.com/files/171515/Fortinet-7.2.1-Authentication-Bypass.html
- https://fortiguard.com/psirt/FG-IR-22-377
- https://www.fortiguard.com/psirt/cvrf/FG-IR-22-377
- https://www.fortiguard.com/psirt/FG-IR-22-377
- https://www.fortiguard.com/psirt/FG-IR-22-377;
- https://nvd.nist.gov/vuln/detail/CVE-2022-40684
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is the vulnerability ID for the Fortinet authentication bypass vulnerability?
The vulnerability ID for the Fortinet authentication bypass vulnerability is CVE-2022-40684.
Which Fortinet products are affected by the authentication bypass vulnerability?
The Fortinet authentication bypass vulnerability affects FortiOS, FortiProxy, and FortiSwitchManager, which are part of the Fortinet Multiple Products.
How does the authentication bypass vulnerability in Fortinet Multiple Products work?
The authentication bypass vulnerability in Fortinet Multiple Products allows an unauthenticated attacker to perform operations on the administrative interface through crafted HTTP or HTTPS requests.
Is authentication required to exploit the Fortinet authentication bypass vulnerability?
No, authentication is not required to exploit the Fortinet authentication bypass vulnerability.
Where can I find more information about the Fortinet authentication bypass vulnerability?
You can find more information about the Fortinet authentication bypass vulnerability at the following reference: [Fortinet PSIRT Advisory FG-IR-22-377](https://www.fortiguard.com/psirt/FG-IR-22-377).
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/the-register
- source/The Register
- alias/CVE-2024-21762
- alias/CVE-2023-48788
- alias/CVE-2023-27997
- alias/CVE-2022-40684
- zeroday/true
- agent/news-ai
- agent/weakness
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/description
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/author
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- collector/fortiguard-psirt
- source/FortiGuard
- agent/title
- agent/severity
- exploited/true
- ransomware/true
- collector/cisa-known-exploited
- source/CISA
- agent/references
- agent/tags
- collector/nvd-cve
- vendor/fortinet
- canonical/fortinet fortiproxy
- version/fortinet fortiproxy/7.0.0
- version/fortinet fortiproxy/7.2.0
- canonical/fortinet fortiswitchmanager
- version/fortinet fortiswitchmanager/7.0.0
- version/fortinet fortiswitchmanager/7.2.0
- canonical/fortinet fortios
- version/fortinet fortios/7.0.0
- version/fortinet fortios/7.2.0
- canonical/fortinet multiple products