2 matches found
The vulnerability of the keyUpload component in the Fortinet FortiNAC network access control solution allows a intruder to execute arbitrary code.
The vulnerability of the keyUpload component in the Fortinet FortiNAC network access control device is related to improper external management of file names or file paths. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code by sending a specially crafted HTTP...
PT-2023-1417 · Fortinet · Fortinac
Name of the Vulnerable Software and Affected Versions: FortiNAC versions 8.3.7, 8.5.0 through 8.5.4, 8.6.0 through 8.6.5, 8.7.0 through 8.7.6, 8.8.0 through 8.8.11, 9.1.0 through 9.1.7, 9.2.0 through 9.2.5, 9.4.0 Description: The issue is related to incorrect external control of file name or path...