2 matches found
CVE-2022-42472
A improper neutralization of crlf sequences in http headers 'http response splitting' in Fortinet FortiOS versions 7.2.0 through 7.2.2, 7.0.0 through 7.0.8, 6.4.0 through 6.4.11, 6.2.0 through 6.2.12, 6.0.0 through 6.0.16, FortiProxy 7.2.0 through 7.2.1, 7.0.0 through 7.0.7, 2.0.0 through 2.0.10,...
CVE-2022-42472
CVE-2022-42472 affects Fortinet FortiOS and FortiProxy prior to fixed builds, with an HTTP Response Splitting issue caused by improper CRLF neutralization in HTTP headers. The vulnerability allows an authenticated, remote attacker to perform an HTTP request splitting attack and gain control over ...