CVE-2022-30307

Low

3.9/10

Summary

A key management error vulnerability [CWE-320] affecting the RSA SSH host key in FortiOS 7.2.0 and below, 7.0.6 and below, 6.4.9 and below may allow an unauthenticated attacker to perform a man in the middle attack.

Attack Complexity: HIGH
Attack Vector: NETWORK
Integrity Impact: LOW
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: HIGH
Confidentiality Impact: LOW
Availability Impact: LOW

References

Advisory Timeline

Published Nov 02, 2022

CVE-2022-30307

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS