CVE-2022-30301
published 2022-07-19CVE-2022-30301: A path traversal vulnerability [CWE-22] in FortiAP-U CLI 6.2.0 through 6.2.3, 6.0.0 through 6.0.4, 5.4.0 through 5.4.6 may allow an admin user to delete and…
medium6.7CVSS 3.1
AVLACLPRHUINSUCHIHAH
A path traversal vulnerability [CWE-22] in FortiAP-U CLI 6.2.0 through 6.2.3, 6.0.0 through 6.0.4, 5.4.0 through 5.4.6 may allow an admin user to delete and access unauthorized files and data via specifically crafted CLI commands.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortiap | — | — |
| fortinet | fortiap-u | — | — |
| fortinet | fortiap-u | — | — |
| fortinet | fortiap-u | — | — |
| fortinet | fortiap-u | — | — |
| fortinet | fortiap-u | — | — |
| fortinet | fortiap-u | — | — |
| fortinet | fortiap-u | 6.0.0 – 6.0.4 | — |
| fortinet | fortiap-u | 6.2.0 – 6.2.3 | — |
| fortinet | fortinet_fortiap-u | — | — |