CVE-2022-23441 — Hard-coded Credentials in Fortinet Fortiedr

CWE-798 — Hard-coded Credentials4 documents4 sources

Severity

9.1CRITICALNVD

EPSS

0.7%

top 27.44%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Fortinet Fortiedr Fortinet Fortiedr

Timeline

PublishedApr 6

Latest updateApr 7

Description

A use of hard-coded cryptographic key vulnerability [CWE-321] in FortiEDR versions 5.0.2, 5.0.1, 5.0.0, 4.0.0 may allow an unauthenticated attacker on the network to disguise as and forge messages from other collectors.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:NExploitability: 3.9 | Impact: 5.2

Affected Packages2 packages

▶NVDfortinet/fortiedr4 versions+3

▶CVEListV5fortinet/fortinet_fortiedrFortiEDR 5.0.2, 5.0.1, 5.0.0, 4.0.0

Patches

Patch: fortiguard.com ↗Patch: fortiguard.com ↗

🔴Vulnerability Details

GHSA

GHSA-39xf-jpcr-gmh4: A use of hard-coded cryptographic key vulnerability [CWE-321] in FortiEDR versions 5↗2022-04-07

▶

CVEList

CVE-2022-23441: A use of hard-coded cryptographic key vulnerability [CWE-321] in FortiEDR versions 5↗2022-04-06

▶

📋Vendor Advisories

Fortinet

A use of hard-coded cryptographic key vulnerability [CWE-321] in FortiEDR versions 5.0.2, 5.0.1, 5.0.0, 4.0.0 may allow...↗2022-04-06

▶