CVE-2022-39952
CVE-2022-39952
In short
Fortinet FortiNAC has a vulnerability where an attacker can manipulate file paths through specially crafted requests, allowing them to run unauthorized code without needing to log in. This is critical because it gives attackers complete control over the affected system.
Technical detail
An external path traversal vulnerability (CWE-73) in FortiNAC allows unauthenticated attackers to execute arbitrary code by sending specially crafted HTTP requests that manipulate file name or path parameters. The vulnerability affects multiple versions and requires no authentication, enabling remote code execution with critical impact on system integrity and confidentiality.
Summary generated and translated by AI from the official description.
A external control of file name or path in Fortinet FortiNAC versions 9.4.0, 9.2.0 through 9.2.5, 9.1.0 through 9.1.7, 8.8.0 through 8.8.11, 8.7.0 through 8.7.6, 8.6.0 through 8.6.5, 8.5.0 through 8.5.4, 8.3.7 may allow an unauthenticated attacker to execute unauthorized code or commands via specifically crafted HTTP request.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H/RL:U/RC:C
Affected products
Fortinet · FortiNACpublic PoCs found — 4
githubgithub.com/horizon3ai/CVE-2022-39952★ 265githubgithub.com/Chocapikk/CVE-2022-39952★ 3githubgithub.com/shiyeshu/CVE-2022-39952_webshell★ 2githubgithub.com/dkstar11q/CVE-2022-39952-better★ 0⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →