CVE-2022-23447

🗓️ 11 Jul 2023 16:52:42Reported by fortinetType

FortiExtender management interface 7.0.0 through 7.0.3, 4.2.0 through 4.2.4, 4.1.1 through 4.1.8, 4.0.0 through 4.0.2, 3.3.0 through 3.3.2, 3.2.1 through 3.2.3, 5.3 all versions are vulnerable to Path Traversal (CVE-2022-23447

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2022-23447	11 Jul 202320:29	–	circl
CNNVD	Fortinet FortiExtender 路径遍历漏洞	11 Jul 202300:00	–	cnnvd
Cvelist	CVE-2022-23447	11 Jul 202316:52	–	cvelist
EUVD	EUVD-2022-28522	3 Oct 202520:07	–	euvd
NVD	CVE-2022-23447	11 Jul 202317:15	–	nvd
Prion	Path traversal	11 Jul 202317:15	–	prion
Positive Technologies	PT-2023-3966 · Fortinet · Fortiextender	11 Jul 202300:00	–	ptsecurity
RedhatCVE	CVE-2022-23447	9 Jan 202608:44	–	redhatcve
Vulnrichment	CVE-2022-23447	11 Jul 202316:52	–	vulnrichment

NVD

Node

fortinet fortiextender_firmwareRange3.2.1–3.2.4

fortinet fortiextender_firmwareRange3.3.0–3.3.3

fortinet fortiextender_firmwareRange4.0.0–4.0.3

fortinet fortiextender_firmwareRange4.1.1–4.1.9

fortinet fortiextender_firmwareRange4.2.0–4.2.5

fortinet fortiextender_firmwareRange7.0.0–7.0.4

fortinet fortiextender_firmwareMatch5.3.2

AND

fortinet fortiextenderMatch-

[
  {
    "vendor": "Fortinet",
    "product": "FortiExtender",
    "defaultStatus": "unaffected",
    "versions": [
      {
        "versionType": "semver",
        "version": "7.0.0",
        "lessThanOrEqual": "7.0.3",
        "status": "affected"
      },
      {
        "version": "5.3.2",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "4.2.0",
        "lessThanOrEqual": "4.2.4",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "4.1.1",
        "lessThanOrEqual": "4.1.8",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "4.0.0",
        "lessThanOrEqual": "4.0.2",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "3.3.0",
        "lessThanOrEqual": "3.3.2",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "3.2.1",
        "lessThanOrEqual": "3.2.3",
        "status": "affected"
      }
    ]
  }
]

Source	Link
fortiguard	www.fortiguard.com/psirt/FG-IR-22-039

21 Nov 2024 06:48Current

7.5High risk

Vulners AI Score7.5

CVSS 3.17.5

EPSS0.00152

SSVC

CWE-22