PT-2022-5766 · Fortinet · Fortiproxy+1
Published
2022-10-10
·
Updated
2022-10-20
·
CVE-2022-29055
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
FortiOS versions 6.0.x, 6.2.0 through 6.2.10, 6.4.0 through 6.4.8, 7.0.0 through 7.0.5, 7.2.0
FortiProxy versions 1.2.x, 2.0.0 through 2.0.9, 7.0.0 through 7.0.4
Description
The issue is related to an access of uninitialized pointer in the SSL VPN portal of FortiOS and FortiProxy, allowing a remote attacker to crash the sslvpn daemon via an HTTP GET request. This can be exploited by a remote unauthenticated or authenticated attacker.
Recommendations
For FortiOS versions 6.0.x, 6.2.0 through 6.2.10, 6.4.0 through 6.4.8, 7.0.0 through 7.0.5, 7.2.0, update to a version that fixes the access of uninitialized pointer issue.
For FortiProxy versions 1.2.x, 2.0.0 through 2.0.9, 7.0.0 through 7.0.4, update to a version that fixes the access of uninitialized pointer issue.
As a temporary workaround, consider restricting access to the SSL VPN portal to minimize the risk of exploitation.
Fix
DoS
Access of Uninitialized Pointer
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Fortios
Fortiproxy