CVE-2021-43065

CVSS 7.8 HIGHEPSS 0.4%

A incorrect permission assignment for critical resource in Fortinet FortiNAC version 9.2.0, version 9.1.3 and below, version 8.8.9 and below allows attacker to gain higher privileges via the access to sensitive system data.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:X/RC:C

Produtos afetados

Fortinet · Fortinet FortiNAC

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://fortiguard.com/advisory/FG-IR-21-178 https://github.com/orangecertcc/security-research/security/advisories/GHSA-8wx4-g5p9-348h