What is CVE-2022-30305?

CVE-2022-30305 is a low-severity vulnerability in Fortinet Fortideceptor, classified under CWE-778. CVSS score: 3.6/10. Published 2022-12-06.

How severe is CVE-2022-30305?

Low severity. CVSS v3 base score is 3.6 out of 10.

Vulnerability in Fortinet Fortideceptor

CVE-2022-30305

An insufficient logging [CWE-778] vulnerability in FortiSandbox versions 4.0.0 to 4.0.2, 3.2.0 to 3.2.3 and 3.1.0 to 3.1.5 and FortiDeceptor versions 4.2.0, 4.1.0 through 4.1.1, 4.0.0 through 4.0.2, 3.3.0 through 3.3.3, 3.2.0 through 3.2.2…

EPSS: 0.002 (44.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 3.6 (Low). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N/E:F/RL:X/RC:C.

Affected products

Fortinet Fortideceptor — versions 4.2.0, 4.1.0, 4.0.0
Fortinet Fortisandbox — versions 4.0.0, 3.2.0, 3.1.0

Weakness classification (CWE)

CWE-778

References

https://fortiguard.com/psirt/FG-IR-21-170

Frequently asked questions

What is CVE-2022-30305?: CVE-2022-30305 is a low-severity vulnerability in Fortinet Fortideceptor, classified under CWE-778. CVSS score: 3.6/10. Published 2022-12-06.
How severe is CVE-2022-30305?: Low severity. CVSS v3 base score is 3.6 out of 10.