描述
An improper authorization vulnerability [CWE-285] in Fortinet FortiNAC version 9.4.0 through 9.4.1 and before 9.2.6 allows an unauthenticated user to perform some administrative operations over the FortiNAC instance via crafted HTTP POST requests.
AI分析AI驱动
受影响产品
fortinetfortinac
fortinetfortinac
fortinetfortinac-f
参考资料
- https://fortiguard.com/psirt/FG-IR-22-329Vendor Advisory
- https://fortiguard.com/psirt/FG-IR-22-329Vendor Advisory