CVE-2022-41328: Path traversal in execute command
First published: Tue Mar 07 2023(Updated: )
A improper limitation of a pathname to a restricted directory vulnerability ('path traversal') [CWE-22] in Fortinet FortiOS version 7.2.0 through 7.2.3, 7.0.0 through 7.0.9 and before 6.4.11 allows a privileged attacker to read and write files on the underlying Linux system via crafted CLI commands.
Credit: psirt@fortinet.com psirt@fortinet.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Fortinet FortiOS IPS Engine | ||
| Fortinet FortiOS IPS Engine | >=6.0.0<=6.0.16 | |
| Fortinet FortiOS IPS Engine | >=6.2.0<6.2.14 | |
| Fortinet FortiOS IPS Engine | >=6.4.0<6.4.12 | |
| Fortinet FortiOS IPS Engine | >=7.0.0<7.0.10 | |
| Fortinet FortiOS IPS Engine | >=7.2.0<7.2.4 | |
| Fortinet FortiOS IPS Engine | >=6.2.0<=6.2.13 | |
| Fortinet FortiOS IPS Engine | >=6.4.0<=6.4.11 | |
| Fortinet FortiOS IPS Engine | >=7.0.0<=7.0.9 | |
| Fortinet FortiOS IPS Engine | >=7.2.0<=7.2.3 |
Remedy
Please upgrade to FortiOS version 7.2.4 or above Please upgrade to FortiOS version 7.0.10 or above Please upgrade to FortiOS version 6.4.12 or above
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.bleepingcomputer.com/news/security/chinese-hackers-exploit-vmware-bug-as-zero-day-for-two-years/
- https://www.theregister.com/2024/03/27/surge_in_enterprise_zero_days/
- https://www.fortiguard.com/psirt/cvrf/FG-IR-22-369
- https://www.fortiguard.com/psirt/FG-IR-22-369
- https://fortiguard.com/psirt/FG-IR-22-369
- https://www.fortiguard.com/psirt/FG-IR-22-369;
- https://nvd.nist.gov/vuln/detail/CVE-2022-41328
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is CVE-2022-41328?
CVE-2022-41328 is a path traversal vulnerability in Fortinet FortiOS that allows a local privileged attacker to read and write files via crafted CLI commands.
How does CVE-2022-41328 affect Fortinet FortiOS?
CVE-2022-41328 affects Fortinet FortiOS by allowing a local privileged attacker to read and write files through specially crafted CLI commands.
Is Fortinet FortiOS the only affected software?
Yes, Fortinet FortiOS is the only affected software by CVE-2022-41328.
What is the severity of CVE-2022-41328?
The severity of CVE-2022-41328 is not specified in the provided information.
Is there a fix available for CVE-2022-41328?
For information on available fixes for CVE-2022-41328, please refer to the reference provided in the description.
- agent/type
- collector/bleeping-computer
- source/BleepingComputer
- alias/CVE-2023-34048
- alias/CVE-2023-20867
- alias/CVE-2022-41328
- agent/first-publish-date
- agent/description
- collector/the-register
- source/The Register
- alias/CVE-2023-5217
- alias/CVE-2023-4863
- alias/CVE-2023-41064
- alias/CVE-2023-2868
- alias/CVE-2023-7102
- zeroday/true
- agent/news-ai
- agent/severity
- agent/weakness
- collector/fortiguard-psirt
- source/FortiGuard
- agent/title
- agent/author
- agent/softwarecombine
- agent/remedy
- agent/event
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/trending
- agent/source
- agent/tags
- exploited/true
- collector/cisa-known-exploited
- source/CISA
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-cve
- source/NVD
- collector/nvd-index
- collector/nvd-api
- vendor/fortinet
- canonical/fortinet fortios ips engine
- version/fortinet fortios ips engine/6.0.0
- version/fortinet fortios ips engine/6.0.16
- version/fortinet fortios ips engine/6.2.0
- version/fortinet fortios ips engine/6.4.0
- version/fortinet fortios ips engine/7.0.0
- version/fortinet fortios ips engine/7.2.0
- version/fortinet fortios ips engine/6.2.13
- version/fortinet fortios ips engine/6.4.11
- version/fortinet fortios ips engine/7.0.9
- version/fortinet fortios ips engine/7.2.3