An improper authorization vulnerability [CWE-285] in Fortinet FortiNAC version 9.4.0 up to and including 9.4.1 and prior to 9.2.6 allows an unauthenticated user to perform some administrative operations over the FortiNAC instance via crafted HTTP POST requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortinac-f |
||
fortinet fortinac |