CVE-2022-42475

A heap-based buffer overflow vulnerability [CWE-122] in FortiOS SSL-VPN 7.2.0 through 7.2.2, 7.0.0 through 7.0.8, 6.4.0 through 6.4.10, 6.2.0...

Basic Information

CVE State: PUBLISHED
Reserved Date: October 07, 2022
Published Date: January 02, 2023
Last Updated: October 23, 2024
Vendor: Fortinet
Product: FortiProxy, FortiOS
Description: A heap-based buffer overflow vulnerability [CWE-122] in FortiOS SSL-VPN 7.2.0 through 7.2.2, 7.0.0 through 7.0.8, 6.4.0 through 6.4.10, 6.2.0 through 6.2.11, 6.0.15 and earlier and FortiProxy SSL-VPN 7.2.0 through 7.2.1, 7.0.7 and earlier may allow a remote unauthenticated attacker to execute arbitrary code or commands via specifically crafted requests.

CVSS Scores

CVSS v3.1

9.3 - CRITICAL

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:U/RC:C

SSVC Information

Exploitation: active
Automatable: Yes
Technical Impact: total

Exploit Status

Exploited in the Wild: Yes (added 2022-12-13 00:00:00 UTC) Source
Proof of Concept Available: Yes (added 2023-03-23 06:48:14 UTC) Source
Used in Malware: Yes (added 2022-12-13 00:00:00 UTC) Source

References

https://fortiguard.com/psirt/FG-IR-22-398

Known Exploited Vulnerability Information

Source	Added Date
CISA	2022-12-13 00:00:00 UTC

Potential Proof of Concepts

Warning: These PoCs have not been tested and could contain malware. Use at your own risk.

0xhaggis/CVE-2022-42475

Type: github • Created: 2023-06-21 21:22:35 UTC • Stars: 34

An exploit for CVE-2022-42475, a pre-authentication heap overflow in Fortinet networking products

AiK1d/CVE-2022-42475-RCE-POC

Type: github • Created: 2023-03-23 06:48:14 UTC • Stars: 8

CVE-2022-42475 飞塔RCE漏洞 POC