Fortinet FortiSOAR Path Traversal Vulnerabilities

Fortinet FortiSOAR Path Traversal Vulnerabilities

CVE-2022-29062 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Multiple relative path traversal vulnerabilities [CWE-23] in Fortinet FortiSOAR before 7.2.1 allows an authenticated attacker to write to the underlying filesystem with nginx permissions via crafted HTTP requests.

Learn more about our Cis Benchmark Audit For Fortinet.