| CVE | CVE-2022-27490 |
| CVE Ordinal Value | 231440 |
| Published Date | 2023-03-07T17:15Z |
| Modified Date | 2023-03-14T19:27Z |
| CWE Type | NVD-CWE-noinfo |
| CVSS 3.x | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
| Description | A exposure of sensitive information to an unauthorized actor in Fortinet FortiManager version 6.0.0 through 6.0.4, FortiAnalyzer version 6.0.0 through 6.0.4, FortiPortal version 6.0.0 through 6.0.9, 5.3.0 through 5.3.8, 5.2.x, 5.1.0, 5.0.x, 4.2.x, 4.1.x, FortiSwitch version 7.0.0 through 7.0.4, 6.4.0 through 6.4.10, 6.2.x, 6.0.x allows an attacker which has obtained access to a restricted administrative account to obtain sensitive information via `diagnose debug` commands. |
| References | |
| By clicking these links you will leave this website. We do not endorse and will not be held accountable for any activity on external sites. | |
| Reference URL | https://fortiguard.com/psirt/FG-IR-18-232 |
| Reference Description | MISC https://fortiguard.com/psirt/FG-IR-18-232 |
| Reference Description | |
| Tags | Vendor Advisory |
| Sources | NIST MITRE |
