CVE-2026-22573

CVE-2026-22573 PUBLISHED

Assigner: fortinet
Reserved: 07.01.2026 Published: 14.04.2026 Updated: 14.04.2026

An improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.3, FortiSOAR PaaS 7.5 all versions, FortiSOAR PaaS 7.4 all versions, FortiSOAR PaaS 7.3 all versions, FortiSOAR on-premise 7.6.0 through 7.6.3, FortiSOAR on-premise 7.5 all versions, FortiSOAR on-premise 7.4 all versions, FortiSOAR on-premise 7.3 all versions may allow an authenticated remote attacker to perform path traversal attack via File Content Extraction actions.

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:H/RL:O/RC:C
CVSS Score: 6.2

Attack Vector	Network	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	High
Privileges Required	Low	Integrity Impact	None
User Interaction	None	Availability Impact	None

CVSS 3.1

Product Status

Vendor	Fortinet
Product	FortiSOAR on-premise
Versions	Default: unaffected affected from 7.6.0 to 7.6.3 (incl.) affected from 7.5.0 to 7.5.3 (incl.) affected from 7.4.0 to 7.4.5 (incl.) affected from 7.3.0 to 7.3.3 (incl.)

Vendor

Fortinet

Product

FortiSOAR on-premise

Versions

Default: unaffected

affected from 7.6.0 to 7.6.3 (incl.)
affected from 7.5.0 to 7.5.3 (incl.)
affected from 7.4.0 to 7.4.5 (incl.)
affected from 7.3.0 to 7.3.3 (incl.)

Vendor	Fortinet
Product	FortiSOAR PaaS
Versions	Default: unaffected affected from 7.6.0 to 7.6.3 (incl.) affected from 7.5.0 to 7.5.3 (incl.) affected from 7.4.0 to 7.4.5 (incl.) affected from 7.3.0 to 7.3.3 (incl.)

Vendor

Fortinet

Product

FortiSOAR PaaS

Versions

Default: unaffected

affected from 7.6.0 to 7.6.3 (incl.)
affected from 7.5.0 to 7.5.3 (incl.)
affected from 7.4.0 to 7.4.5 (incl.)
affected from 7.3.0 to 7.3.3 (incl.)

Solutions

Upgrade to FortiSOAR on-premise version 7.6.4 or above Upgrade to FortiSOAR PaaS version 7.6.4 or above

References

Problem Types

Information disclosure CWE