CVE-2022-41328 - Fortinet FortiOS Path Traversal Vulnerability

Vulnerability Name

Fortinet FortiOS Path Traversal Vulnerability

Description

Fortinet FortiOS contains a path traversal vulnerability that may allow a local privileged attacker to read and write files via crafted CLI commands.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes

https://www.fortiguard.com/psirt/FG-IR-22-369

https://nvd.nist.gov/vuln/detail/CVE-2022-41328

Related News Articles

Chinese cyberspies backdoor Juniper routers for stealthy accessMarch 12, 2025

UNC3886 Uses Fortinet, VMware 0-Days and Stealth Tactics in Long-Term SpyingJune 19, 2024