A relative path traversal vulnerability [CWE-23] in FortiWeb 7.0.0 through 7.0.1, 6.3.6 through 6.3.18, 6.4 all versions may allow an authenticated attacker to obtain unauthorized access to files and data via specifically crafted HTTP GET requests.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/psirt/FG-IR-22-136 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2023-02-16T18:05:25.362Z
Updated: 2024-08-03T06:48:36.133Z
Reserved: 2022-05-06T12:09:27.623Z
Link: CVE-2022-30300
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-02-16T19:15:12.403
Modified: 2023-11-07T03:47:13.200
Link: CVE-2022-30300
Redhat
No data.