{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-11T13:47:40.679","vulnerabilities":[{"cve":{"id":"CVE-2022-26122","sourceIdentifier":"psirt@fortinet.com","published":"2022-11-02T12:15:52.747","lastModified":"2024-11-21T06:53:28.560","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An insufficient verification of data authenticity vulnerability [CWE-345] in FortiClient, FortiMail and FortiOS AV engines version 6.2.168 and below and version 6.4.274 and below may allow an attacker to bypass the AV engine via manipulating MIME attachment with junk and pad characters in base64."},{"lang":"es","value":"Una verificación insuficiente de la vulnerabilidad de autenticidad de datos [CWE-345] en los motores FortiClient, FortiMail y FortiOS AV versión 6.2.168 e inferiores y la versión 6.4.274 e inferiores puede permitir a un atacante eludir el motor AV mediante la manipulación del archivo adjunto MIME con basura y pad. caracteres en base64."}],"metrics":{"cvssMetricV31":[{"source":"psirt@fortinet.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N","baseScore":4.7,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.0}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-345"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:antivirus_engine:0.4.23:*:*:*:*:*:*:*","matchCriteriaId":"4E472D86-EC41-4AC8-AA7E-E2D94F123680"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:antivirus_engine:2.0.49:*:*:*:*:*:*:*","matchCriteriaId":"0A6024DF-0DB4-420B-8226-1CBD55A92364"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:antivirus_engine:2.0.60:*:*:*:*:*:*:*","matchCriteriaId":"BF2C1609-3538-4419-B75C-32C84B21A75D"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:antivirus_engine:4.4.54:*:*:*:*:*:*:*","matchCriteriaId":"7051D640-5891-415E-8A77-F68C35134954"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:antivirus_engine:6.33:*:*:*:*:*:*:*","matchCriteriaId":"4AE41E36-D7B9-42F0-9C34-FA18F081B2C0"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:antivirus_engine:6.137:*:*:*:*:*:*:*","matchCriteriaId":"B51453FA-C7D3-481B-BC3B-46D94009E3FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:antivirus_engine:6.142:*:*:*:*:*:*:*","matchCriteriaId":"35E2F910-2553-4DC8-8730-0A0BF16A91B0"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:antivirus_engine:6.144:*:*:*:*:*:*:*","matchCriteriaId":"17870D25-F9BF-47F3-A63F-63DCF0C0A4D1"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:antivirus_engine:6.145:*:*:*:*:*:*:*","matchCriteriaId":"F532E565-F438-4268-BEE3-F27B9B44EC8F"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:antivirus_engine:6.156:*:*:*:*:*:*:*","matchCriteriaId":"AA32EE02-B802-43B8-A57C-3D8680C22573"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:antivirus_engine:6.157:*:*:*:*:*:*:*","matchCriteriaId":"024D9F08-76C9-4E10-873E-6A4B618CE44F"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:antivirus_engine:6.243:*:*:*:*:*:*:*","matchCriteriaId":"250CDE83-42CA-4F2C-83DB-1274B3B8C75D"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:antivirus_engine:6.252:*:*:*:*:*:*:*","matchCriteriaId":"3B167E24-C4B2-4A06-8987-D49812D69D29"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:antivirus_engine:6.253:*:*:*:*:*:*:*","matchCriteriaId":"B7B97F13-AB4A-4114-BF89-D57945506991"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:fortimail:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.0","versionEndIncluding":"6.0.12","matchCriteriaId":"01F784BF-4F89-4938-9150-F911E3EB6CD0"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:fortimail:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2.0","versionEndIncluding":"6.2.9","matchCriteriaId":"AEDC7EE8-084C-4F9E-A510-E283FCDF9832"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:fortimail:*:*:*:*:*:*:*:*","versionStartIncluding":"6.4.0","versionEndIncluding":"6.4.6","matchCriteriaId":"C0A5C345-7055-4F18-AE77-FF1DBE41AB89"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:fortimail:*:*:*:*:*:*:*:*","versionStartIncluding":"7.0.0","versionEndIncluding":"7.0.2","matchCriteriaId":"43038EC9-6FD3-488C-8CA3-8B4A705C3E11"},{"vulnerable":true,"criteria":"cpe:2.3:a:fortinet:fortimail:4.1.0:*:*:*:*:*:*:*","matchCriteriaId":"2822C6B9-7FD5-4E1B-907B-F324F28A82A3"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*","versionStartIncluding":"6.0.0","versionEndIncluding":"6.0.15","matchCriteriaId":"7CB40CF0-CC6A-44A5-BC5D-70DC7CA78D49"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2.0","versionEndIncluding":"6.2.11","matchCriteriaId":"E417AB31-3C1E-47C9-941B-36026B4379E8"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*","versionStartIncluding":"6.4.0","versionEndIncluding":"6.4.10","matchCriteriaId":"FF6F9869-F824-4519-986E-A032668EA7BA"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*","versionStartIncluding":"7.0.0","versionEndIncluding":"7.0.6","matchCriteriaId":"DE466DB5-F176-45E6-B017-A658A0B74836"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*","matchCriteriaId":"B9B87A2A-4C83-448B-8009-AD20214D58CB"}]}]}],"references":[{"url":"https://fortiguard.com/psirt/FG-IR-22-074","source":"psirt@fortinet.com","tags":["Patch","Vendor Advisory"]},{"url":"https://fortiguard.com/psirt/FG-IR-22-074","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}}]}