CVE-2022-45857: 
Fortinet FortiManager vulnerability analysis and mitigation

CVE-2022-45857 is an incorrect user management vulnerability [CWE-286] discovered in the FortiManager VDOM creation component. The vulnerability was disclosed on January 3, 2023, affecting FortiManager versions 6.2.0 through 6.2.8, 6.4.0 through 6.4.7, and 7.0.0 through 7.0.1. This vulnerability has been assigned a medium severity rating with a CVSSv3 score of 6.0 (FortiGuard PSIRT).

The vulnerability stems from an incorrect user management implementation in the VDOM creation component. The issue specifically manifests when the super_admin profiled admin account is deleted, potentially allowing an attacker to access a FortiGate without a password through newly created VDOMs (NVD, FortiGuard PSIRT).

The primary impact of this vulnerability is improper access control, which could lead to unauthorized access to FortiGate devices through newly created VDOMs. This presents a significant security risk as it bypasses normal authentication requirements (FortiGuard PSIRT).

Fortinet has released patches to address this vulnerability. Users are advised to upgrade to FortiManager version 7.0.2 or above, version 6.4.8 or above, or version 6.2.9 or above, depending on their current version. It's worth noting that FortiManager versions 7.2, 7.4, and 7.6 are not affected by this vulnerability (FortiGuard PSIRT).