VYPR
Unrated severityNVD Advisory· Published Feb 16, 2023· Updated Oct 23, 2024

CVE-2022-38375

CVE-2022-38375

Description

An improper authorization vulnerability [CWE-285]  in Fortinet FortiNAC version 9.4.0 through 9.4.1 and before 9.2.6 allows an unauthenticated user to perform some administrative operations over the FortiNAC instance via crafted HTTP POST requests.

Affected products

2
  • Fortinet/Fortinac Fllm-fuzzy2 versions
    >=9.4.0 <=9.4.1, <9.2.6+ 1 more
    • (no CPE)range: >=9.4.0 <=9.4.1, <9.2.6
    • (no CPE)range: 9.4.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.