An authentication bypass using an alternate path or channel [CWE-288] in Fortinet FortiOS version 7.2.0 through 7.2.1 and 7.0.0 through 7.0.6, FortiProxy version 7.2.0 and version 7.0.0 through 7.0.6 and FortiSwitchManager version 7.2.0 and 7.0.0 allows an unauthenticated atttacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests.
Published 2022-10-18 14:15:10
Updated 2023-03-27 18:15:12
View at NVD,   CVE.org

CVE-2022-40684 is in the CISA Known Exploited Vulnerabilities Catalog

This issue is known to have been leveraged as part of a ransomware campaign.
CISA vulnerability name:
Fortinet Multiple Products Authentication Bypass Vulnerability
CISA required action:
Apply updates per vendor instructions.
CISA description:
Fortinet FortiOS, FortiProxy, and FortiSwitchManager contain an authentication bypass vulnerability that could allow an unauthenticated attacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests.
Notes:
https://www.fortiguard.com/psirt/FG-IR-22-377; https://nvd.nist.gov/vuln/detail/CVE-2022-40684
Added on 2022-10-11 Action due date 2022-11-01

Exploit prediction scoring system (EPSS) score for CVE-2022-40684

97.36%
Probability of exploitation activity in the next 30 days EPSS Score History
~ 100 %
Percentile, the proportion of vulnerabilities that are scored at or less

Metasploit modules for CVE-2022-40684

  • Fortinet FortiOS, FortiProxy, and FortiSwitchManager authentication bypass.
    Disclosure Date: 2022-10-10
    First seen: 2022-12-23
    exploit/linux/http/fortinet_authentication_bypass_cve_2022_40684
    This module exploits an authentication bypass vulnerability in the Fortinet FortiOS, FortiProxy, and FortiSwitchManager API to gain access to a chosen account. And then add a SSH key to the authorized_keys file of the chosen account, allowing to log

CVSS scores for CVE-2022-40684

Base Score Base Severity CVSS Vector Exploitability Score Impact Score Score Source First Seen
9.8
CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
3.9
5.9
NIST
9.8
CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
3.9
5.9
Fortinet, Inc.

CWE ids for CVE-2022-40684

References for CVE-2022-40684

Products affected by CVE-2022-40684

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!