CVE-2022-42475 Detection: Zero-Day Vulnerability in FortiOS SSL-VPN Exploited in Attacks Against Government Entities and Large Organizations - SOC Prime
Tags
attack-pattern: Exploitation For Privilege Escalation - T1404 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Vulnerabilities - T1588.006 Exploit Public-Facing Application - T1190 Exploitation For Privilege Escalation - T1068
Show in Graph
Common Information
Type Value
UUID cdfbe727-b8e9-43f0-bc27-a46158621595
Fingerprint 1c94291de845cf41
Analysis status DONE
Considered CTI value 2
Text language
Published Jan. 16, 2023, 4:33 p.m.
Added to db Jan. 16, 2023, 6:14 p.m.
Last updated Nov. 17, 2024, 6:55 p.m.
Headline CVE-2022-42475 Detection: Zero-Day Vulnerability in FortiOS SSL-VPN Exploited in Attacks Against Government Entities and Large Organizations
Title CVE-2022-42475 Detection: Zero-Day Vulnerability in FortiOS SSL-VPN Exploited in Attacks Against Government Entities and Large Organizations - SOC Prime
Detected Hints/Tags/Attributes 34/1/7
Source URLs
Redirection Url
Details Source https://socprime.com/blog/cve-2022-42475-detection-zero-day-vulnerability-in-fortios-ssl-vpn-exploited-in-attacks-against-government-entities-and-large-enterprises/
URL Provider
Details Provider Source level domain
Details socprime.com socprime.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 237 SOC Prime https://socprime.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 90 
cve-2022-42475
Details Domain 42 
socprime.com
Details Domain 32 
my.socprime.com
Details MITRE ATT&CK Techniques 542 
T1190
Details MITRE ATT&CK Techniques 208 
T1068
Details Url 17 
https://socprime.com
Details Url 4 
https://my.socprime.com/pricing.