A relative path traversal vulnerability [CWE-23] in FortiWeb 7.0.0 through 7.0.1, 6.3.6 through 6.3.18, 6.4 all versions may allow an authenticated attacker to obtain unauthorized access to files and data via specifically crafted HTTP GET requests.
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-22-136 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: fortinet
Published: 2023-02-16T18:05:25.362Z
Updated: 2023-02-16T18:05:25.362Z
Reserved: 2022-05-06T12:09:27.623Z
Link: CVE-2022-30300
JSON object: View
NVD Information
Status : Modified
Published: 2023-02-16T19:15:12.403
Modified: 2023-11-07T03:47:13.200
Link: CVE-2022-30300
JSON object: View
Redhat Information
No data.