CVE-2022-30307

A key management error vulnerability [CWE-320] affecting the RSA SSH host key in FortiOS 7.2.0 and below, 7.0.6 and below, 6.4.9 and below may allow an unauthenticated attacker to perform a man in the middle attack.
References
Link Resource
https://fortiguard.com/psirt/FG-IR-22-228 Patch Vendor Advisory
Configurations

Configuration 1

cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*
cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*
cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*

Information

Published : 2022-11-02 12:15

Updated : 2022-12-08 03:54


NVD link : CVE-2022-30307

Mitre link : CVE-2022-30307

Products Affected
No products.