Fortinac@9.2.5 Security Vulnerabilities and Issues — Fortinac@9.2.5 CVE List

Lucene search

FortinetFortinac9.2.5

3 matches found

CVE•added 2023/02/16 7:15 p.m.•31 views

CVE-2022-40677

A improper neutralization of argument delimiters in a command ('argument injection') in Fortinet FortiNAC versions 9.4.0, 9.2.0 through 9.2.5, 9.1.0 through 9.1.7, 8.8.0 through 8.8.11, 8.7.0 through 8.7.6, 8.6.0 through 8.6.5, 8.5.0 through 8.5.4, 8.3.7 allows attacker to execute unauthorized code...

8.8CVSS8.8AI score0.00287EPSS

CVE•added 2023/02/16 7:15 p.m.•31 views

CVE-2022-40678

An insufficiently protected credentials in Fortinet FortiNAC versions 9.4.0, 9.2.0 through 9.2.5, 9.1.0 through 9.1.7, 8.8.0 through 8.8.11, 8.7.0 through 8.7.6, 8.6.0 through 8.6.5, 8.5.0 through 8.5.4, 8.3.7 may allow a local attacker with database access to recover user passwords.

7.8CVSS7.3AI score0.00045EPSS

CVE•added 2023/03/07 5:15 p.m.•27 views

CVE-2022-40676

A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiNAC versions 9.4.0, 9.2.0 through 9.2.5, 9.1.0 through 9.1.8, 8.8.0 through 8.8.11, 8.7.0 through 8.7.6, 8.6.0 through 8.6.5, 8.5.0 through 8.5.4, 8.3.7 allows attacker to execute unauthorized co...

7.5CVSS5.8AI score0.00987EPSS