CVE-2022-26119 - OpenCVE

A improper authentication vulnerability in Fortinet FortiSIEM before 6.5.0 allows a local attacker with CLI access to perform operations on the Glassfish server directly via a hardcoded password.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Fortinet	Fortisiem

Configuration 1 [-]

OR	cpe:2.3:a:fortinet:fortisiem::::::::
	cpe:2.3:a:fortinet:fortisiem::::::::
	cpe:2.3:a:fortinet:fortisiem::::::::
	cpe:2.3:a:fortinet:fortisiem::::::::
	cpe:2.3:a:fortinet:fortisiem::::::::
	cpe:2.3:a:fortinet:fortisiem:5.0.0:::::::*
	cpe:2.3:a:fortinet:fortisiem:5.0.1:::::::*
	cpe:2.3:a:fortinet:fortisiem:5.2.1:::::::*
	cpe:2.3:a:fortinet:fortisiem:5.2.2:::::::*
	cpe:2.3:a:fortinet:fortisiem:5.4.0:::::::*
	cpe:2.3:a:fortinet:fortisiem:6.2.0:::::::*
	cpe:2.3:a:fortinet:fortisiem:6.2.1:::::::*
	cpe:2.3:a:fortinet:fortisiem:6.4.0:::::::*
	cpe:2.3:a:fortinet:fortisiem:6.4.1:::::::*

References

Link	Resource
https://fortiguard.com/psirt/FG-IR-22-064	Patch Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: fortinet

Published: 2022-11-02T00:00:00

Updated: 2022-11-02T00:00:00

Reserved: 2022-02-25T00:00:00

Link: CVE-2022-26119

JSON object: View

NVD Information

Status : Analyzed

Published: 2022-11-02T12:15:50.427

Modified: 2023-08-08T14:21:49.707

Link: CVE-2022-26119

JSON object: View

Redhat Information

No data.

CWE

CWE-798

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:fortinet:fortisiem:*:*:*:*:*:*:*:*", "matchCriteriaId": "D52F2E6B-9A88-4DB4-8CB9-09A3AFFF1685", "versionEndIncluding": "5.1.3", "versionStartIncluding": "5.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortisiem:*:*:*:*:*:*:*:*", "matchCriteriaId": "C5F193AB-AC8D-4889-B34D-DEAF83E40B71", "versionEndIncluding": "5.2.8", "versionStartIncluding": "5.2.5", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortisiem:*:*:*:*:*:*:*:*", "matchCriteriaId": "A0258A88-352D-4F9A-894D-F7442CAFE461", "versionEndIncluding": "5.3.3", "versionStartIncluding": "5.3.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortisiem:*:*:*:*:*:*:*:*", "matchCriteriaId": "24480037-F5CE-4CCE-800D-8C707B7F36AF", "versionEndIncluding": "6.1.2", "versionStartIncluding": "6.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortisiem:*:*:*:*:*:*:*:*", "matchCriteriaId": "D9FC4C46-F269-4635-80BE-BED292538FEF", "versionEndIncluding": "6.3.3", "versionStartIncluding": "6.3.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortisiem:5.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "966F62A1-10E7-4AFF-8725-2A4425179CA9", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortisiem:5.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "D9040EA7-86F7-4553-A0C8-A6C76B0C9E75", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortisiem:5.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "AE69B846-3B23-401D-98D0-46DC976A25FC", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortisiem:5.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "DE4C2A49-23CB-4104-A345-46B3B4A29A24", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortisiem:5.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "91E43A1B-D4C5-4FFF-9D3E-00140023921E", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortisiem:6.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "51452B16-AB83-41D3-8779-3E1AEA818AD1", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortisiem:6.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "3F453DE5-E31D-4BD1-8978-DD6D166045E0", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortisiem:6.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "C48AC74D-9FBE-4194-9BE8-FD2D6A0EC788", "vulnerable": true}, {"criteria": "cpe:2.3:a:fortinet:fortisiem:6.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "BFFA27A5-0168-4261-9A04-D2DBB0A9946D", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A improper authentication vulnerability in Fortinet FortiSIEM before 6.5.0 allows a local attacker with CLI access to perform operations on the Glassfish server directly via a hardcoded password."}, {"lang": "es", "value": "Una vulnerabilidad de autenticaci\u00f3n incorrecta en Fortinet FortiSIEM anterior a 6.5.0 permite a un atacante local con acceso CLI realizar operaciones en el servidor Glassfish directamente a trav\u00e9s de una contrase\u00f1a codificada."}], "id": "CVE-2022-26119", "lastModified": "2023-08-08T14:21:49.707", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "psirt@fortinet.com", "type": "Secondary"}]}, "published": "2022-11-02T12:15:50.427", "references": [{"source": "psirt@fortinet.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://fortiguard.com/psirt/FG-IR-22-064"}], "sourceIdentifier": "psirt@fortinet.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-798"}], "source": "nvd@nist.gov", "type": "Primary"}]}