CVE-2022-30305

🗓️ 06 Dec 2022 16:00:54Reported by fortinetType

Insufficient logging vulnerability in FortiSandbox and FortiDeceptor versions may allow unlimited failed authentication attempt

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2022-30305	6 Dec 202220:40	–	circl
CNNVD	Fortinet FortiSandbox 安全漏洞	6 Dec 202200:00	–	cnnvd
CVE	CVE-2022-30305	6 Dec 202216:00	–	cve
EUVD	EUVD-2022-52256	3 Oct 202520:07	–	euvd
Fortinet	FortiSandbox & FortiDeceptor - Insufficient logging and lack of limitation of failed authentication attempts	6 Dec 202200:00	–	fortinet
NCSC	Vulnerabilities fixed in Fortinet products	7 Dec 202200:00	–	ncsc
NVD	CVE-2022-30305	6 Dec 202217:15	–	nvd
Prion	Design/Logic Flaw	6 Dec 202217:15	–	prion
Positive Technologies	PT-2022-20057 · Fortinet · Fortisandbox +1	6 Dec 202200:00	–	ptsecurity
RedhatCVE	CVE-2022-30305	23 May 202500:55	–	redhatcve

[
  {
    "vendor": "Fortinet",
    "product": "FortiSandbox",
    "defaultStatus": "unaffected",
    "versions": [
      {
        "versionType": "semver",
        "version": "4.0.0",
        "lessThanOrEqual": "4.0.2",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "3.2.0",
        "lessThanOrEqual": "3.2.3",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "3.1.0",
        "lessThanOrEqual": "3.1.5",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fortinet",
    "product": "FortiDeceptor",
    "defaultStatus": "unaffected",
    "versions": [
      {
        "version": "4.2.0",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "4.1.0",
        "lessThanOrEqual": "4.1.1",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "4.0.0",
        "lessThanOrEqual": "4.0.2",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "3.3.0",
        "lessThanOrEqual": "3.3.3",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "3.2.0",
        "lessThanOrEqual": "3.2.2",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "3.1.0",
        "lessThanOrEqual": "3.1.1",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "3.0.0",
        "lessThanOrEqual": "3.0.2",
        "status": "affected"
      }
    ]
  }
]

Source	Link
fortiguard	www.fortiguard.com/psirt/FG-IR-21-170

06 Dec 2022 16:00Current

7.8High risk

Vulners AI Score7.8

CVSS 3.13.7

EPSS0.00613

CWE-778