CVE-2026-22572

{"id": "CVE-2026-22572", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "psirt@fortinet.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.2}]}, "published": "2026-03-10T18:18:12.250", "references": [{"url": "https://fortiguard.fortinet.com/psirt/FG-IR-26-090", "tags": ["Vendor Advisory"], "source": "psirt@fortinet.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "psirt@fortinet.com", "description": [{"lang": "en", "value": "CWE-288"}]}], "descriptions": [{"lang": "en", "value": "An authentication bypass using an alternate path or channel vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.3, FortiAnalyzer 7.4.0 through 7.4.7, FortiAnalyzer 7.2.2 through 7.2.11, FortiManager 7.6.0 through 7.6.3, FortiManager 7.4.0 through 7.4.7, FortiManager 7.2.2 through 7.2.11 may allow an attacker with knowledge of the admins password to bypass multifactor authentication checks via submitting multiple crafted requests."}, {"lang": "es", "value": "Una omisi\u00f3n de autenticaci\u00f3n utilizando una vulnerabilidad de ruta o canal alternativo en Fortinet FortiAnalyzer 7.6.0 hasta 7.6.3, FortiAnalyzer 7.4.0 hasta 7.4.7, FortiAnalyzer 7.2.2 hasta 7.2.11, FortiAnalyzer Cloud 7.6.0 hasta 7.6.3, FortiAnalyzer Cloud 7.4.0 hasta 7.4.7, FortiAnalyzer Cloud 7.2.2 hasta 7.2.10, FortiManager 7.6.0 hasta 7.6.3, FortiManager 7.4.0 hasta 7.4.7, FortiManager 7.2.2 hasta 7.2.11, FortiManager Cloud 7.6.0 hasta 7.6.3, FortiManager Cloud 7.4.0 hasta 7.4.7, FortiManager Cloud 7.2.2 hasta 7.2.10 puede permitir a un atacante con conocimiento de la contrase\u00f1a del administrador omitir las comprobaciones de autenticaci\u00f3n multifactor mediante el env\u00edo de m\u00faltiples solicitudes manipuladas."}], "lastModified": "2026-03-16T14:18:11.980", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:fortinet:fortianalyzer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0105EF79-42B6-4891-993F-CA28F95D1764", "versionEndExcluding": "7.4.8", "versionStartIncluding": "7.2.2"}, {"criteria": "cpe:2.3:a:fortinet:fortianalyzer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7E7EC074-7835-438D-8501-D7FA6A84F280", "versionEndExcluding": "7.6.4", "versionStartIncluding": "7.6.0"}, {"criteria": "cpe:2.3:a:fortinet:fortimanager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F4211463-C85D-4D66-92A8-AFE961FEECAD", "versionEndExcluding": "7.4.8", "versionStartIncluding": "7.2.2"}, {"criteria": "cpe:2.3:a:fortinet:fortimanager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0EC7E465-5168-4BB8-89D3-244E6DBF70A0", "versionEndExcluding": "7.6.4", "versionStartIncluding": "7.6.0"}, {"criteria": "cpe:2.3:a:fortinet:fortimanager_cloud:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B6B453F7-5AD8-4C18-9218-E8880D8D6D25", "versionEndExcluding": "7.4.8", "versionStartIncluding": "7.2.2"}, {"criteria": "cpe:2.3:a:fortinet:fortimanager_cloud:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9AD9F018-F775-4676-AA63-454BE5996A5C", "versionEndExcluding": "7.6.4", "versionStartIncluding": "7.6.0"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@fortinet.com"}