CVE-2022-41328
Fortinet FortiOS Path Traversal Vulnerability
CVSS
—
No CVSS
EPSS
12.3%
p96
KEV
YES
Mar 14, 2023
Exploit Today
79
0-100
Published: — · Last modified: —
12.3%EPSS · 30 days12.3%
2026-06-302026-07-16
Product
Fortinet / FortiOS
Vulnerability
Fortinet FortiOS Path Traversal Vulnerability
Added to KEV
Mar 14, 2023
Remediate by
Apr 4, 2023
Known ransomware use
No
Summary description
Fortinet FortiOS contains a path traversal vulnerability that may allow a local privileged attacker to read and write files via crafted CLI commands.
Required action
Apply updates per vendor instructions.
Notes
https://www.fortiguard.com/psirt/FG-IR-22-369; https://nvd.nist.gov/vuln/detail/CVE-2022-41328
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2018-13379—100.0%
KEV—80Fortinet FortiOS SSL VPN Path Traversal Vulnerability—CVE-2022-42475—99.9%
KEV—80Fortinet FortiOS Heap-Based Buffer Overflow Vulnerability—CVE-2024-21762—99.7%
KEV—80Fortinet FortiOS Out-of-Bound Write Vulnerability—CVE-2020-12812—98.8%
KEV—80Fortinet FortiOS SSL VPN Improper Authentication Vulnerability—CVE-2019-5591—96.9%
KEV—79Fortinet FortiOS Default Configuration Vulnerability—CVE-2019-6693—92.1%
KEV—78Fortinet FortiOS Use of Hard-Coded Credentials Vulnerability—