4 matches found
CVE-2023-33299
A deserialization of untrusted data in Fortinet FortiNAC below 7.2.1, below 9.4.3, below 9.2.8 and all earlier versions of 8.x allows attacker to execute unauthorized code or commands via specifically crafted request on inter-server communication port. Note FortiNAC versions 8.x will not be fixed...
New Fortinet's FortiNAC Vulnerability Exposes Networks to Code Execution Attacks
Fortinet has rolled out updates to address a critical security vulnerability impacting its FortiNAC network access control solution that could lead to the execution of arbitrary code. Tracked as CVE-2023-33299, the flaw is rated 9.6 out of 10 for severity on the CVSS scoring system. It has been...
CVE-2023-33299
Summary: CVE-2023-33299 is a deserialization of untrusted data vulnerability in Fortinet FortiNAC that allows remote code execution via crafted requests on the inter-server communication port. Affected versions and root cause: FortiNAC prior to 7.2.1, prior to 9.4.3, prior to 9.2.8, and all 8.x v...
CVE-2023-33299
creationtimestamp| type| source ---|---|--- 2023-06-22 12:39:06+00:00| published-proof-of-concept| https://t.me/purplemedved/50 2023-06-23 17:20:05+00:00| seen| https://t.me/truesecator/4536 2023-06-26 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1053 2023-06-26...