CVE-2022-26122

Name of the Vulnerable Software and Affected Versions FortiClient, FortiMail, and FortiOS AV engines versions 6.2.168 and below FortiClient, FortiMail, and FortiOS AV engines versions 6.4.274 and below

Description The issue is related to insufficient verification of data authenticity, which may allow an attacker to bypass the AV engine. This can be achieved by manipulating MIME attachments with junk and pad characters in base64. The vulnerability can be exploited remotely, allowing an attacker to bypass security restrictions using specially crafted MIME content with base64 encoding.

Recommendations For versions 6.2.168 and below, update to a version above 6.2.168 to resolve the issue. For versions 6.4.274 and below, update to a version above 6.4.274 to resolve the issue. As a temporary workaround, consider restricting the processing of MIME attachments with base64 encoding to minimize the risk of exploitation.