EUVD-2022-30689

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Insufficient data authenticity verification in FortiClient, FortiMail, and FortiOS AV engines may allow bypass.

Reporter	Title	Published	Views	Family All 12
ATTACKERKB	CVE-2022-26122	2 Nov 202212:15	–	attackerkb
CNNVD	Fortinet FortiMail和FortiClient 数据伪造问题漏洞	2 Nov 202200:00	–	cnnvd
CVE	CVE-2022-26122	2 Nov 202200:00	–	cve
Cvelist	CVE-2022-26122	2 Nov 202200:00	–	cvelist
Fortinet	Protect	1 Nov 202200:00	–	fortinet
Tenable Nessus	Fortinet Fortigate Evasion by manipulating MIME attachment (FG-IR-22-074)	26 Oct 202400:00	–	nessus
NVD	CVE-2022-26122	2 Nov 202212:15	–	nvd
OSV	CVE-2022-26122	2 Nov 202212:15	–	osv
Prion	Authorization	2 Nov 202212:15	–	prion
Positive Technologies	PT-2022-5767 · Fortinet · Forticlient +2	1 Nov 202200:00	–	ptsecurity

[
  {
    "enisaIdVendor": [
      {
        "id": "7cb33baf-6b2e-33f7-8a56-b5f220ae8dec",
        "vendor": {
          "name": "Fortinet"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "7ca247b6-78a5-33ed-a5e4-fff758518ffd",
        "product": {
          "name": "Fortinet AV Engine, FortiMail, FortiOS, FortiClient"
        },
        "product_version": "AV Engine version 6.2.168 and below and version 6.4.274 and below."
      }
    ]
  }
]

Source	Link
fortiguard	www.fortiguard.com/psirt/FG-IR-22-074

03 Oct 2025 20:07Current

8.5High risk

Vulners AI Score8.5

CVSS 3.14.7 - 8.6

EPSS0.00118

SSVC