Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/03/16 4:30 p.m.27 views

CVE-2023-33300

A improper neutralization of special elements used in a command 'command injection' in Fortinet FortiNAC 7.2.1 and earlier, 9.4.3 and earlier allows attacker a limited, unauthorized file access via specifically crafted request in inter-server communication port...

5.3CVSS7.2AI score0.12691EPSS
Exploits0References1
OSV
OSV
added 2025/03/14 4:15 p.m.5 views

CVE-2023-33300

A improper neutralization of special elements used in a command 'command injection' in Fortinet FortiNAC 7.2.1 and earlier, 9.4.3 and earlier allows attacker a limited, unauthorized file access via specifically crafted request in inter-server communication port...

5.3CVSS5.8AI score0.12691EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/14 3:46 p.m.11 views

CVE-2023-33300

A improper neutralization of special elements used in a command 'command injection' in Fortinet FortiNAC 7.2.1 and earlier, 9.4.3 and earlier allows attacker a limited, unauthorized file access via specifically crafted request in inter-server communication port...

5.3CVSS5.5AI score0.12691EPSS
Exploits0References1
CVE
CVE
added 2025/03/14 3:46 p.m.89 views

CVE-2023-33300

FortiNAC suffers an improper neutralization of special elements in a command injection vulnerability affecting the tcp/5555 XML interface, enabling an unauthenticated attacker to copy local files from the device. Affected releases include FortiNAC 7.2.0–7.2.1 and 9.4.0–9.4.3; remediation is in Fo...

5.3CVSS5.4AI score0.12691EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/03/14 3:46 p.m.14 views

CVE-2023-33300

A improper neutralization of special elements used in a command 'command injection' in Fortinet FortiNAC 7.2.1 and earlier, 9.4.3 and earlier allows attacker a limited, unauthorized file access via specifically crafted request in inter-server communication port...

5.3CVSS0.12691EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2023/06/27 5:35 a.m.68 views

New Fortinet's FortiNAC Vulnerability Exposes Networks to Code Execution Attacks

Fortinet has rolled out updates to address a critical security vulnerability impacting its FortiNAC network access control solution that could lead to the execution of arbitrary code. Tracked as CVE-2023-33299, the flaw is rated 9.6 out of 10 for severity on the CVSS scoring system. It has been...

9.8CVSS8.8AI score0.99815EPSS
Exploits17
Circl
Circl
added 2023/06/22 12:39 p.m.7 views

CVE-2023-33300

creationtimestamp| type| source ---|---|--- 2023-06-22 12:39:06+00:00| published-proof-of-concept| https://t.me/purplemedved/50 2023-06-23 17:20:05+00:00| seen| https://t.me/truesecator/4536 2023-08-11 14:30:31+00:00| published-proof-of-concept| https://t.me/MrVGunz/811 2025-03-14 17:48:49+00:00|...

5.3CVSS5.4AI score0.12691EPSS
Exploits0References6
Rows per page
Query Builder