www.belgium.be Logo of the federal government

WARNING: AUTHENTICATION BYPASS IN FORTIOS & FORTIPROXY SSH LOGIN COMPONENT

Referentie: 
Advisory #2022-42
Versie: 
1.0
Geïmpacteerde software: 
FortiOS version 7.2.0 through 7.2.1
FortiOS version 7.0.0 through 7.0.7
FortiOS version 6.4.0 through 6.4.9
FortiOS version 6.2 all versions
FortiOS version 6.0 all versions
FortiProxy version 7.0.0 through 7.0.6
FortiProxy version 2.0.0 through 2.0.10
FortiProxy version 1.2.0 all versions
Type: 
Authentication Bypass
CVE/CVSS: 

CVE: CVE-2022-35843
CVSSv3: 7.7

 

Datum: 
07/12/2022

Bronnen

https://www.fortiguard.com/psirt/FG-IR-22-255

 

Risico’s

By successfully exploiting vulnerability CVE-2022-35843, a remote and unauthenticated attacker can login into the device by sending a specially crafted Access-Challenge response from the RADIUS server.

 

Beschrijving

CVE-2022-35843 is an SSH authentication bypass vulnerability affecting multiple versions of FortiOS and FortiProxy.  More specifically, this vulnerability affects the SSH login component in both products and causes improper access control where RADIUS authentication is used.

In order to exploit this vulnerability, neither privileges nor user interaction are required.

 

Aanbevolen acties

Fortinet recommends patching affected software :

Upgrade to FortiOS version 7.2.2 or above
Upgrade to FortiOS version 7.0.8 or above
Upgrade to FortiOS version 6.4.10 or above
Upgrade to FortiProxy version 7.0.7 or above
Upgrade to FortiProxy version 2.0.11 or above

 

Meer informatie

For more information, please read Fortinet security advisories: https://www.fortiguard.com/psirt/FG-IR-22-255