Open Redirect Vulnerability in Fortinet FortiNAC-F Products
CVE-2026-21741
2.2LOW
What is CVE-2026-21741?
An open redirect vulnerability exists in Fortinet's FortiNAC-F products between versions 7.6.0 and 7.6.5, as well as all versions of 7.4 and 7.2, potentially allowing a remote attacker with a system administrator role to execute unauthorized redirects. This vulnerability can be exploited via specially crafted CSV files, which may redirect users to arbitrary malicious websites. This poses significant security risks by exposing users to phishing attempts and other malicious activities.
Affected Version(s)
FortiNAC-F 7.6.0 <= 7.6.5
FortiNAC-F 7.4.0 <= 7.4.3
FortiNAC-F 7.2.0 <= 7.2.9