Skip to main content

Mondoo

Vulnerability Management
Technology
Services

Solutions

Financial Services
Manufacturing
Healthcare

Resources

Blog
Vulnerability Database
Documentation
GitHub

Company

About
Careers
Partners
Contact

Legal

Privacy
Terms
Imprint

© 2026 Mondoo, Inc.

Log in Get Assessment

CVE-2026-22155 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceCVE-2026-22155

CVE-2026-22155

MEDIUM6.5

A cleartext transmission of sensitive information vulnerability in Fortinet FortiSOAR PaaS 7

Published Apr 14, 2026

Modified 1 weeks ago

Details

A cleartext transmission of sensitive information vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.3, FortiSOAR PaaS 7.5.0 through 7.5.2, FortiSOAR PaaS 7.4 all versions, FortiSOAR PaaS 7.3 all versions, FortiSOAR on-premise 7.6.0 through 7.6.2, FortiSOAR on-premise 7.5.0 through 7.5.1, FortiSOAR on-premise 7.4 all versions, FortiSOAR on-premise 7.3 all versions may allow attacker to information disclosure via <insert attack vector here>

References

https://fortiguard.fortinet.com/psirt/FG-IR-26-106

https://www.cve.org/CVERecord?id=CVE-2026-22155

Aliases

CVSS Analysis

CVSS v3.1

6.2

Exploitability

Attack Vector

NetworkAV:N

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

Scope

UnchangedS:U

Impact

Confidentiality

HighC:H

Integrity

NoneI:N

Availability

NoneA:N

6.2/CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C

Weakness Type (CWE)

Other

Ecosystems

Timeline

PublishedApr 14, 2026

ModifiedApr 14, 2026