CVE-2022-42469 Information

Description

A permissive list of allowed inputs vulnerability [CWE-183] in FortiGate version 7.2.3 and below version 7.0.9 and below Policy-based NGFW Mode may allow an authenticated SSL-VPN user to bypass the policy via bookmarks in the web portal.

Reference

https://fortiguard.com/psirt/FG-IR-22-381