Improper Authorization Vulnerability in Fortinet FortiNAC
CVE-2022-38375
8.6HIGH
What is CVE-2022-38375?
An improper authorization vulnerability exists in Fortinet FortiNAC versions 9.4.0 through 9.4.1 and before 9.2.6. This flaw allows unauthenticated users to execute certain administrative operations on the FortiNAC instance through specially crafted HTTP POST requests. This could lead to unauthorized access and manipulation of sensitive configurations, posing a significant risk to the security posture of affected networks.
Affected Version(s)
FortiNAC 9.4.0 <= 9.4.1
FortiNAC 9.2.0 <= 9.2.6