Fortinet

Fortinac-f

13 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.21%
  • Veröffentlicht 14.04.2026 15:39:45
  • Zuletzt bearbeitet 20.04.2026 18:06:16

An URL Redirection to Untrusted Site ('Open Redirect') vulnerability [CWE-601] vulnerability in Fortinet FortiNAC-F 7.6.0 through 7.6.5, FortiNAC-F 7.4 all versions, FortiNAC-F 7.2 all versions may allow a remote privileged attacker with system admin...

Warnung Medienbericht
  • EPSS 85.84%
  • Veröffentlicht 27.01.2026 19:18:23
  • Zuletzt bearbeitet 09.06.2026 18:30:13

An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.5, FortiAnalyzer 7.4.0 through 7.4.9, FortiAnalyzer 7.2.0 through 7.2.11, FortiAnalyzer 7.0.0 through 7.0.15...

  • EPSS 0.16%
  • Veröffentlicht 14.03.2025 15:46:57
  • Zuletzt bearbeitet 25.07.2025 15:08:45

An improper certificate validation vulnerability [CWE-295] in FortiNAC-F version 7.2.4 and below may allow a remote and unauthenticated attacker to perform a Man-in-the-Middle attack on the HTTPS communication channel between the FortiOS device, an i...

  • EPSS 0.65%
  • Veröffentlicht 13.06.2023 09:15:16
  • Zuletzt bearbeitet 21.11.2024 07:45:05

An improper permissions, privileges, and access controls vulnerability [CWE-264] in FortiNAC-F 7.2.0, FortiNAC 9.4.1 and below, 9.2.6 and below, 9.1.8 and below, 8.8.0 all versions 8.7.0 all versions may allow an unauthenticated attacker to perform a...

  • EPSS 0.16%
  • Veröffentlicht 03.05.2023 22:15:18
  • Zuletzt bearbeitet 21.11.2024 07:50:54

A use of hard-coded credentials vulnerability [CWE-798] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.2 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions may allow an authenticated attacker to access to the databas...

  • EPSS 0.61%
  • Veröffentlicht 03.05.2023 22:15:17
  • Zuletzt bearbeitet 21.11.2024 07:45:06

An improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.2 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions in Li...

  • EPSS 0.14%
  • Veröffentlicht 03.05.2023 22:15:15
  • Zuletzt bearbeitet 21.11.2024 07:29:51

An insufficiently protected credentials vulnerability [CWE-522] in FortiNAC-F 7.2.0, FortiNAC 9.4.1 and below, 9.2.6 and below, 9.1.8 and below, 8.8.0 all versions, 8.7.0 all versions may allow a local attacker with system access to retrieve users' p...

  • EPSS 0.49%
  • Veröffentlicht 03.05.2023 22:15:15
  • Zuletzt bearbeitet 21.11.2024 07:29:51

A weak authentication vulnerability [CWE-1390] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.2 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions in device registration page may allow an unauthenticated attacker to ...

  • EPSS 0.42%
  • Veröffentlicht 03.05.2023 22:15:09
  • Zuletzt bearbeitet 21.11.2024 07:27:24

A URL redirection to untrusted site ('Open Redirect') vulnerability [CWE-601] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.1 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions may allow an unauthenticated attack...

  • EPSS 0.59%
  • Veröffentlicht 11.04.2023 17:15:07
  • Zuletzt bearbeitet 21.11.2024 07:27:24

An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiNAC 9.4.1 and below, 9.2.6 and below, 9.1.8 and below, 8.8.11 and below, 8.7.6 and below may allow an unauthenticated attacker to access sensitive informati...