CVE-2022-33876
published 2022-12-06CVE-2022-33876: Multiple instances of improper input validation vulnerability in Fortinet FortiADC version 7.1.0, version 7.0.0 through 7.0.2 and version 6.2.4 and below…
medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
Multiple instances of improper input validation vulnerability in Fortinet FortiADC version 7.1.0, version 7.0.0 through 7.0.2 and version 6.2.4 and below allows an authenticated attacker to retrieve files with specific extension from the underlying Linux system via crafted HTTP requests.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | 5.1.0 – 6.2.4 | — |
| fortinet | fortiadc | 5.2.0 – 5.2.8 | — |
| fortinet | fortiadc | 5.3.0 – 5.3.7 | — |
| fortinet | fortiadc | 5.4.0 – 5.4.5 | — |
| fortinet | fortiadc | 6.0.0 – 6.0.4 | — |
| fortinet | fortiadc | 6.1.0 – 6.1.6 | — |
| fortinet | fortiadc | 6.2.0 – 6.2.4 | — |
| fortinet | fortiadc | 7.0.0 – 7.0.2 | — |
| fortinet | fortinet | — | — |