Unrated severityNVD Advisory· Published Feb 16, 2023· Updated Oct 23, 2024
CVE-2022-40678
CVE-2022-40678
Description
An insufficiently protected credentials in Fortinet FortiNAC versions 9.4.0, 9.2.0 through 9.2.5, 9.1.0 through 9.1.7, 8.8.0 through 8.8.11, 8.7.0 through 8.7.6, 8.6.0 through 8.6.5, 8.5.0 through 8.5.4, 8.3.7 may allow a local attacker with database access to recover user passwords.
Affected products
2<9.4.0 or >=9.4.0, >=9.2.0 <=9.2.5, >=9.1.0 <=9.1.7, >=8.8.0 <=8.8.11, >=8.7.0 <=8.7.6, >=8.6.0 <=8.6.5, >=8.5.0 <=8.5.4, 8.3.7+ 1 more
- (no CPE)range: <9.4.0 or >=9.4.0, >=9.2.0 <=9.2.5, >=9.1.0 <=9.1.7, >=8.8.0 <=8.8.11, >=8.7.0 <=8.7.6, >=8.6.0 <=8.6.5, >=8.5.0 <=8.5.4, 8.3.7
- (no CPE)range: 9.4.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.