CVE-2022-39953
First published: Tue Mar 07 2023(Updated: )
A improper privilege management in Fortinet FortiNAC version 9.4.0 through 9.4.1, FortiNAC version 9.2.0 through 9.2.6, FortiNAC version 9.1.0 through 9.1.8, FortiNAC all versions 8.8, FortiNAC all versions 8.7, FortiNAC all versions 8.6, FortiNAC all versions 8.5, FortiNAC version 8.3.7 allows attacker to escalation of privilege via specially crafted commands.
Credit: psirt@fortinet.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Fortinet FortiNAC | >=8.5.0<=8.5.4 | |
| Fortinet FortiNAC | >=8.6.0<=8.6.5 | |
| Fortinet FortiNAC | >=8.7.0<=8.7.6 | |
| Fortinet FortiNAC | >=8.8.0<=8.8.11 | |
| Fortinet FortiNAC | >=9.2.0<=9.2.6 | |
| Fortinet FortiNAC | =8.3.7 | |
| Fortinet FortiNAC | =9.4.0 | |
| Fortinet FortiNAC | =9.4.1 |
Remedy
Please upgrade to FortiNAC version 9.4.2 or above Please upgrade to FortiNAC version 9.2.7 or above Please upgrade to FortiNAC version 9.1.9 or above Please upgrade to FortiNAC version 7.2.0 or above
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/references
- agent/severity
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- vendor/fortinet
- canonical/fortinet fortinac
- version/fortinet fortinac/8.5.0
- version/fortinet fortinac/8.5.4
- version/fortinet fortinac/8.6.0
- version/fortinet fortinac/8.6.5
- version/fortinet fortinac/8.7.0
- version/fortinet fortinac/8.7.6
- version/fortinet fortinac/8.8.0
- version/fortinet fortinac/8.8.11
- version/fortinet fortinac/9.1.0
- version/fortinet fortinac/9.1.8
- version/fortinet fortinac/9.2.0
- version/fortinet fortinac/9.2.6
- version/fortinet fortinac/8.3.7
- version/fortinet fortinac/9.4.0
- version/fortinet fortinac/9.4.1