VDB
CVE-2022-43950
CVE-2022-43950
PUBLISHED
CVSS 4.699999809265137 MEDIUM
A URL redirection to untrusted site ('Open Redirect') vulnerability [CWE-601] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.1 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions may allow an unauthenticated attacker to redirect users to any arbitrary website via a crafted URL.
EPSS 0.34% · 57.1th percentile
Risk Scores
CVSS 3.1
4.699999809265137
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N
EPSS Score
0.34%
57.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| fortinet | fortinac | 8.7.0, 8.7.0 |
| fortinet | fortinac-f | 7.2.0, 7.2.0 |
| Fortinet | FortiNAC | 9.2.0, 9.1.0, 8.8.0 |
Exploit Intelligence
Timeline
- May 3, 2023 CVE Published
- May 4, 2023 EPSS Score
- Jun 10, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Aug 23, 2023 EPSS Score
- Sep 29, 2023 EPSS Score
- Nov 5, 2023 EPSS Score
- Dec 12, 2023 EPSS Score
- Jan 18, 2024 EPSS Score
- Feb 24, 2024 EPSS Score
- Apr 1, 2024 EPSS Score
- May 8, 2024 EPSS Score
References
- https://www.fortiguard.com/psirt/FG-IR-22-456 advisory
- https://www.fortiguard.com/psirt/FG-IR-22-520 advisory
- https://www.fortiguard.com/psirt/FG-IR-22-475 advisory
- https://www.fortiguard.com/psirt/FG-IR-22-297 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-013 advisory
- https://www.fortiguard.com/psirt/FG-IR-22-464 advisory
- https://www.fortiguard.com/psirt/FG-IR-22-407 advisory
- https://www.fortiguard.com/psirt/FG-IR-22-452 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-069 advisory
- https://fortiguard.com/psirt/FG-IR-22-407 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2022-43950 advisory
- https://fortiguard.com/psirt/FG-IR-23-013 url