An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in Fortinet FortiProxy version 7.2.0 through 7.2.1 and 7.0.0 through 7.0.7, FortiOS version 7.2.0 through 7.2.3 and 7.0.0 through 7.0.9 allows an unauthenticated attackers to obtain sensitive logging informations on the device via crafted HTTP GET requests.
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-22-364 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2023-03-07 09:15
Updated : 2023-03-14 12:32
NVD link : CVE-2022-41329
Mitre link : CVE-2022-41329
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
fortinet
- fortios
- fortiproxy