377 matches found
Fortinet FortiNAC - Arbitrary File Write
Fortinet FortiNAC is susceptible to arbitrary file write. An external control of the file name or path can allow an attacker to execute unauthorized code or commands via specifically crafted HTTP request, thus making it possible to obtain sensitive information, modify data, and/or execute...
CVE-2026-21741
An URL Redirection to Untrusted Site 'Open Redirect' vulnerability CWE-601 vulnerability in Fortinet FortiNAC-F 7.6.0 through 7.6.5, FortiNAC-F 7.4 all versions, FortiNAC-F 7.2 all versions may allow a remote privileged attacker with system administrator role to redirect users to an arbitrary...
EUVD-2026-22313
An URL Redirection to Untrusted Site 'Open Redirect' vulnerability CWE-601 vulnerability in Fortinet FortiNAC-F 7.6.0 through 7.6.5, FortiNAC-F 7.4 all versions, FortiNAC-F 7.2 all versions may allow a remote privileged attacker with system administrator role to redirect users to an arbitrary...
CVE-2026-21741
An URL Redirection to Untrusted Site 'Open Redirect' vulnerability CWE-601 vulnerability in Fortinet FortiNAC-F 7.6.0 through 7.6.5, FortiNAC-F 7.4 all versions, FortiNAC-F 7.2 all versions may allow a remote privileged attacker with system administrator role to redirect users to an arbitrary...
CVE-2026-21741
An URL Redirection to Untrusted Site 'Open Redirect' vulnerability CWE-601 vulnerability in Fortinet FortiNAC-F 7.6.0 through 7.6.5, FortiNAC-F 7.4 all versions, FortiNAC-F 7.2 all versions may allow a remote privileged attacker with system administrator role to redirect users to an arbitrary...
CVE-2026-21741
An URL Redirection to Untrusted Site 'Open Redirect' vulnerability CWE-601 vulnerability in Fortinet FortiNAC-F 7.6.0 through 7.6.5, FortiNAC-F 7.4 all versions, FortiNAC-F 7.2 all versions may allow a remote privileged attacker with system administrator role to redirect users to an arbitrary...
CVE-2026-21741
Fortinet FortiNAC-F is affected by an Open Redirect (CWE-601) vulnerability across FortiNAC-F 7.6.0–7.6.5, FortiNAC-F 7.4 all versions, and FortiNAC-F 7.2 all versions. The issue allows a remote privileged attacker with the system administrator role to redirect users to an arbitrary website by up...
Fortinet FortiNAC-F 输入验证错误漏洞
Fortinet FortiNAC-F is a network access control solution developed by the American company Fortinet. This product is primarily used for network access control and IoT security protection. Vulnerabilities exist in versions 7.6.0 to 7.6.5, 7.4, and 7.2 of Fortinet FortiNAC-F, due to input validatio...
PT-2026-32662
Name of the Vulnerable Software and Affected Versions FortiNAC-F versions 7.6.0 through 7.6.5 FortiNAC-F 7.4 affected versions not specified FortiNAC-F 7.2 affected versions not specified Description An Open Redirect issue exists where a remote privileged attacker with a system administrator role...
CVE-2020-12816
An improper neutralization of input vulnerability in FortiNAC before 8.7.2 may allow a remote authenticated attacker to perform a stored cross site scripting attack XSS via the UserID of Admin Users...
CVE-2022-38376
Multiple improper neutralization of input during web page generation 'Cross-site Scripting' vulnerabilities CWE-79 in Fortinet FortiNAC portal UI before 9.4.1 allows an attacker to perform an XSS attack via crafted HTTP requests...
CVE-2021-41021
A privilege escalation vulnerability in FortiNAC versions 8.8.8 and below and 9.1.2 and below may allow an admin user to escalate the privileges to root via the sudo command...
CVE-2022-26116
Multiple improper neutralization of special elements used in SQL commands 'SQL Injection' vulnerability CWE-89 in FortiNAC version 8.3.7 and below, 8.5.2 and below, 8.5.4, 8.6.0, 8.6.5 and below, 8.7.6 and below, 8.8.11 and below, 9.1.5 and below, 9.2.2 and below may allow an authenticated attack...
EUVD-2020-5099
Malware in sbrugna...
EUVD-2021-10931
Malware in sbrugna...
EUVD-2019-15169
Malware in sbrugna...
EUVD-2022-43949
Malicious code in bioql PyPI...
EUVD-2022-42398
Malicious code in bioql PyPI...
EUVD-2022-43946
Malicious code in bioql PyPI...
EUVD-2023-26772
Malicious code in bioql PyPI...