VYPR
Unrated severityNVD Advisory· Published Mar 14, 2025· Updated Mar 14, 2025

CVE-2023-33300

CVE-2023-33300

Description

A improper neutralization of special elements used in a command ('command injection') in Fortinet FortiNAC 7.2.1 and earlier, 9.4.3 and earlier allows attacker a limited, unauthorized file access via specifically crafted request in inter-server communication port.

Affected products

2
  • Fortinet/Fortinac Fllm-fuzzy2 versions
    <=7.2.1 or <=9.4.3+ 1 more
    • (no CPE)range: <=7.2.1 or <=9.4.3
    • (no CPE)range: 9.4.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.