Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
CVE-2022-42475 is a critical severity vulnerability with a CVSS score of 9.8. Exploits are available; patches have been released and should be applied urgently. This is classified as a zero-day vulnerability.
Very high probability of exploitation in the next 30 days
EPSS predicts the probability of exploitation in the next 30 days based on real-world threat data, complementing CVSS severity scores with actual risk assessment.
A heap-based buffer overflow vulnerability [CWE-122] in FortiOS SSL-VPN 7.2.0 through 7.2.2, 7.0.0 through 7.0.8, 6.4.0 through 6.4.10, 6.2.0 through 6.2.11, 6.0.15 and earlier and FortiProxy SSL-VPN 7.2.0 through 7.2.1, 7.0.7 and earlier may allow a remote unauthenticated attacker to execute arbitrary code or commands via specifically crafted requests.
| Vendor | Product |
|---|---|
| Fortinet | Fortios |
| Fortinet | Fortigate 7121f |
| Fortinet | Fortigate 6300f |
| Fortinet | Fortigate 7030e |
| Fortinet | Fortiproxy |
| Fortinet | Fortigate 7040e |
| Fortinet | Fortigate 6300f Dc |
| Fortinet | Fortigate 6501f Dc |
| Fortinet | Fim 7910e |
| Fortinet | Fpm 7620e |
And 13 more...
Please cite this page when referencing data from Strobes VI. Proper attribution helps support our vulnerability intelligence research.