发布于3月6日3月6日 Members Fortinet FortiOS: Information Exposure (CVE-2022-41329) Severity 5 CVSS (AV:N/AC:L/Au:N/C:P/I:N/A:N) Published 03/07/2023 Created 03/16/2023 Added 03/16/2023 Modified 01/28/2025 Description An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in Fortinet FortiProxy version 7.2.0 through 7.2.1 and 7.0.0 through 7.0.7, FortiOS version 7.2.0 through 7.2.3 and 7.0.0 through 7.0.9 allows an unauthenticated attackers to obtain sensitive logging informations on the device via crafted HTTP GET requests. Solution(s) fortios-upgrade-latest References https://attackerkb.com/topics/cve-2022-41329 CVE - 2022-41329 https://fortiguard.com/psirt/FG-IR-22-364
