What is CVE-2026-22633?

CVE-2026-22633 has been classified as rejected due to the vulnerability not being used. Although marked invalid, organizations should remain vigilant regarding potential risks. No known exploits or public proof of concept exist.

What is the severity of CVE-2026-22633?

CVE-2026-22633 has a severity rating of UNKNOWN with a CVSS base score of 0.

CVE-2026-22633 | Unknown Severity Vulnerability in Fortinet

CVE-2026-22633 is a vulnerability that has been classified as rejected, indicating that it is not used. Although it does not pose a direct threat, the rejection highlights the importance of maintaining awareness in security practices. The vulnerability was published on January 9, 2026.

The rejection of this CVE means that it was not deemed a valid vulnerability within Fortinet's products. Organizations should still prioritize their security measures, as vulnerabilities can emerge unexpectedly, and a proactive approach is essential.

Risk to organizations includes potential misunderstandings about the vulnerability's implications. While CVE-2026-22633 does not pose a direct risk, organizations should remain vigilant and ensure that their systems are up to date.

Currently, there are no known exploits or public proof of concept associated with this CVE. This lack of evidence further solidifies its rejection status. However, organizations should prioritize monitoring their security environment.

Vulnerability Details

The CVE description indicates that the vulnerability was rejected due to not being used. It is crucial for security teams to understand that even rejected vulnerabilities can sometimes lead to misconfigurations or security oversights.

Technical Analysis

The root cause of the rejection was due to the vulnerability not being applicable to any Fortinet products. This highlights the importance of ensuring accurate classification and monitoring of vulnerabilities to avoid unnecessary panic.

Risk & Impact Analysis

While this vulnerability is rejected, the potential for confusion among security practitioners is a real concern. Organizations must focus on accurate vulnerability management and classification to ensure their defenses are effective.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

Since the CVE was rejected, there are no affected versions or products to report.

Mitigation & Remediation

As there is no active vulnerability, organizations do not need to take specific actions for CVE-2026-22633. However, maintaining a routine security assessment, including regular penetration testing, can help identify any new vulnerabilities that may arise.

Detection Guidance

No specific detection guidance is applicable for this rejected vulnerability. However, organizations should remain vigilant for other potential vulnerabilities in their systems.

AppSecure Threat Intelligence Insight

The rejection of CVE-2026-22633 serves as a reminder for security teams to continuously validate the relevance and applicability of CVEs to their environments. Regularly reviewing security practices and being aware of emerging threats is crucial.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2026-22633: Unknown Severity Vulnerability in Fortinet