Vulnerability CVE-2022-41327


Published: 2023-06-13

Description:
A cleartext transmission of sensitive information vulnerability [CWE-319] in Fortinet FortiOS version 7.2.0 through 7.2.4, 7.0.0 through 7.0.8, FortiProxy version 7.2.0 through 7.2.1 and 7.0.0 through 7.0.8 allows an authenticated attacker with readonly superadmin privileges to intercept traffic in order to obtain other adminstrators cookies via diagnose CLI commands.

 References:
https://fortiguard.com/psirt/FG-IR-22-380

Copyright 2026, cxsecurity.com

 

Back to Top