logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2022-42475

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2022-42475

Description:
A heap-based buffer overflow vulnerability [CWE-122] in FortiOS SSL-VPN 7.2.0 through 7.2.2, 7.0.0 through 7.0.8, 6.4.0 through 6.4.10, 6.2.0 through 6.2.11, 6.0.15 and earlier and FortiProxy SSL-VPN 7.2.0 through 7.2.1, 7.0.7 and earlier may allow a remote unauthenticated attacker to execute arbitrary code or commands via specifically crafted requests.
Last updated date:
06/28/2024

Reports

alt

ACTIVELY EXPLOITED

Type:
exploitation
Confidence:
HIGH
Date of publishing:
12/12/2022
Reference url to background

https://fortiguard.fortinet.com/psirt/FG-IR-22-398

Type:
exploitation
Confidence:
HIGH
Date of publishing:
12/13/2022
Type:
exploit
Confidence:
HIGH
Date of publishing:
01/09/2023
Type:
exploit
Confidence:
HIGH
Date of publishing:
02/23/2023
Reference url to background

https://github.com/scrt/cve-2022-42475

Type:
exploit
Confidence:
HIGH
Date of publishing:
03/16/2023
Type:
exploit
Confidence:
HIGH
Date of publishing:
03/23/2023
Type:
exploit
Confidence:
HIGH
Date of publishing:
03/23/2023
Type:
exploit
Confidence:
HIGH
Date of publishing:
06/21/2023
Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy