CVE-2022-40684
Description
An authentication bypass using an alternate path or channel [CWE-288] in Fortinet FortiOS version 7.2.0 through 7.2.1 and 7.0.0 through 7.0.6, FortiProxy version 7.2.0 and version 7.0.0 through 7.0.6 and FortiSwitchManager version 7.2.0 and 7.0.0 allows an unauthenticated atttacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests.
In plain language
AI Act nowFortinet FortiOS, FortiProxy, and FortiSwitchManager contain a critical flaw that lets an internet attacker get in without logging in and take over administrative functions—if you run these products, you should act now by upgrading to the fixed versions.
Unauthenticated attackers can bypass authentication and perform administrative operations on Fortinet FortiOS, FortiProxy, and FortiSwitchManager by sending specially crafted HTTP/HTTPS requests to an administrative interface path/channel.
What to do now
- Check whether you run Fortinet FortiOS, FortiProxy, and/or FortiSwitchManager, and note your exact version numbers.
- If you are on FortiOS or FortiProxy versions in the affected ranges (7.2.0–7.2.1 or 7.0.0–7.0.6), plan to upgrade immediately.
- Upgrade FortiOS and FortiProxy to the fixed version 7.0.7.
- If you cannot upgrade right away, follow Fortinet’s vendor workaround guidance from the FortiGuard PSIRT page listed by the vendor, and restrict/limit access to the administrative interface as tightly as possible.
- After updating, verify the device is running the new version and review management/API logs for suspicious unauthenticated requests.
CVSS Vector Breakdown
AV:NAttack VectorAC:LAttack ComplexityPR:NPrivileges RequiredUI:NUser InteractionS:UScopeC:HConfidentialityI:HIntegrityA:HAvailabilityWeaknesses
Affected Products
Exploitability
Required action: Apply updates per vendor instructions.
Exploit details including PoC links, Metasploit modules, and scanner templates are available after registration.
View exploit detailsAttack Graph
Click technique nodes for MITRE ATT&CK details · drag to pan · Ctrl/⌘ + scroll to zoom, or go fullscreen.
MITRE ATT&CK
2 techniquesReferences
Unlock Complete Vulnerability Intelligence
Get the full picture for CVE-2022-40684 and every CVE in our database. Create a free account — no credit card required.
Create Free Account