CVE-2022-22304

Publication date

2022-07-18 16:35:28

Family

fortinet

State

PUBLISHED

Description

An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiAuthenticator OWA Agent for Microsoft version 2.2 and 2.1 may allow an unauthenticated attacker to perform an XSS attack via crafted HTTP GET requests.