Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fortinet fortinac-f vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-22633
An improper permissions, privileges, and access controls vulnerability [CWE-264] in FortiNAC-F 7.2.0, FortiNAC 9.4.1 and below, 9.2.6 and below, 9.1.8 and below, 8.8.0 all versions 8.7.0 all versions may allow an unauthenticated malicious user to perform a DoS attack on the devic...
Fortinet Fortinac
Fortinet Fortinac 9.4.0
Fortinet Fortinac 9.4.1
Fortinet Fortinac-f 7.2.0
7.8
CVSSv3
CVE-2023-26203
A use of hard-coded credentials vulnerability [CWE-798] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.2 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions may allow an authenticated malicious user to access to the database via shell commands.
Fortinet Fortinac
Fortinet Fortinac-f 7.2.0
4.4
CVSSv3
CVE-2022-45859
An insufficiently protected credentials vulnerability [CWE-522] in FortiNAC-F 7.2.0, FortiNAC 9.4.1 and below, 9.2.6 and below, 9.1.8 and below, 8.8.0 all versions, 8.7.0 all versions may allow a local attacker with system access to retrieve users' passwords.
Fortinet Fortinac
Fortinet Fortinac-f 7.2.0
7.5
CVSSv3
CVE-2022-45860
A weak authentication vulnerability [CWE-1390] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.2 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions in device registration page may allow an unauthenticated malicious user to perform password sprayin...
Fortinet Fortinac
Fortinet Fortinac-f 7.2.0
9
CVSSv3
CVE-2023-22637
An improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.2 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions in License Management wou...
Fortinet Fortinac-f 7.2.0
Fortinet Fortinac
4.7
CVSSv3
CVE-2022-43950
A URL redirection to untrusted site ('Open Redirect') vulnerability [CWE-601] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.1 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions may allow an unauthenticated malicious user to redirect us...
Fortinet Fortinac
Fortinet Fortinac-f 7.2.0
7.5
CVSSv3
CVE-2022-43951
An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiNAC 9.4.1 and below, 9.2.6 and below, 9.1.8 and below, 8.8.11 and below, 8.7.6 and below may allow an unauthenticated malicious user to access sensitive information via crafted HTTP requ...
Fortinet Fortinac-f
Fortinet Fortinac
9.8
CVSSv3
CVE-2022-38375
An improper authorization vulnerability [CWE-285] in Fortinet FortiNAC version 9.4.0 up to and including 9.4.1 and prior to 9.2.6 allows an unauthenticated user to perform some administrative operations over the FortiNAC instance via crafted HTTP POST requests.
Fortinet Fortinac-f
Fortinet Fortinac
9.1
CVSSv3
CVE-2022-39954
An improper restriction of xml external entity reference in Fortinet FortiNAC version 9.4.0 up to and including 9.4.1, FortiNAC version 9.2.0 up to and including 9.2.7, FortiNAC version 9.1.0 up to and including 9.1.8, FortiNAC version 8.8.0 up to and including 8.8.11, FortiNAC v...
Fortinet Fortinac-f
Fortinet Fortinac
7.4
CVSSv3
CVE-2022-40675
Some cryptographic issues in Fortinet FortiNAC versions 9.4.0 up to and including 9.4.1, 9.2.0 up to and including 9.2.7, 9.1.0 up to and including 9.1.8, 8.8.0 up to and including 8.8.11, 8.7.0 up to and including 8.7.6, 8.6.0 up to and including 8.6.5, 8.5.0 up to and including...
Fortinet Fortinac-f
Fortinet Fortinac
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started