Home

Description

A improper privilege management in Fortinet FortiNAC version 9.4.0 through 9.4.1, FortiNAC version 9.2.0 through 9.2.6, FortiNAC version 9.1.0 through 9.1.8, FortiNAC all versions 8.8, FortiNAC all versions 8.7, FortiNAC all versions 8.6, FortiNAC all versions 8.5, FortiNAC version 8.3.7 allows attacker to escalation of privilege via specially crafted commands.

PUBLISHED Reserved 2022-09-05 | Published 2023-03-07 | Updated 2024-10-23 | Assigner fortinet




HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:H/RL:U/RC:C

Problem types

Escalation of privilege

Product status

Default status
unaffected

9.4.0 (semver)
affected

9.2.0 (semver)
affected

9.1.0 (semver)
affected

8.8.0 (semver)
affected

8.7.0 (semver)
affected

8.6.0 (semver)
affected

8.5.0 (semver)
affected

8.3.7
affected

References

fortiguard.com/psirt/FG-IR-22-309

fortiguard.com/psirt/FG-IR-22-309

cve.org (CVE-2022-39953)

nvd.nist.gov (CVE-2022-39953)

Download JSON