Request a Demo
Rewterz
Rewterz Threat Update – $900 Million in Cryptocurrency Laundered by North Korean Lazarus APT Group
October 10, 2023
Rewterz
Rewterz Threat Advisory – Multiple Fortinet FortiOS and FortiProxy Products Vulnerabilities
October 10, 2023

Rewterz Threat Advisory – CVE-2022-43952 – Fortinet FortiADC Product Vulnerability

Severity

Low

Analysis Summary

CVE-2022-43952

Fortinet FortiADC is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated attacker could exploit this vulnerability to execute script in a victim’s Web browser within the security context of the hosting Web site. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

Impact

  • Cross-Site Scripting

Indicators Of Compromise

CVE

  • CVE-2022-43952

Affected Vendors

Fortinet

Affected Products

  • Fortinet FortiADC 6.2.0
  • Fortinet FortiADC 6.2.5
  • Fortinet FortiADC 7.0.0
  • Fortinet FortiADC 7.0.3
  • Fortinet FortiADC 7.1.0
  • Fortinet FortiADC 7.1.1

Remediation

Refer to FortiGuard Advisory for patch, upgrade or suggested workaround information.

FortiGuard Advisory