How severe is CVE-2022-42475?

This vulnerability has a severity rating of CRITICAL with a CVSS score of 9.8 out of 10.

What type of vulnerability is CVE-2022-42475?

This is classified as CWE-197, which is a common weakness in software security.

CVE-2022-42475

CRITICAL Year: 2022

CVSS v3 Score

9.8

Critical

Weakness Type

CWE-197

View all →

Vulnerability Description

A heap-based buffer overflow vulnerability [CWE-122] in FortiOS SSL-VPN 7.2.0 through 7.2.2, 7.0.0 through 7.0.8, 6.4.0 through 6.4.10, 6.2.0 through 6.2.11, 6.0.15 and earlier and FortiProxy SSL-VPN 7.2.0 through 7.2.1, 7.0.7 and earlier may allow a remote unauthenticated attacker to execute arbitrary code or commands via specifically crafted requests.

CVE-2024-43639

CRITICAL

CVSS:9.8(Critical)

Windows KDC Proxy Remote Code Execution Vulnerability

CWE-1972024

CVE-2020-15202

CRITICAL

CVSS:9.0(Critical)

In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `Shard` API in TensorFlow expects the last argument to be a function taking two `int64` (i.e., `long long`) arguments. However,...

CWE-1972020

CVE-2023-32143

HIGH

CVSS:8.8(High)

D-Link DAP-1360 webupg UPGCGI_CheckAuth Numeric Truncation Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations...

CWE-1972023