A use of hard-coded credentials vulnerability [CWE-798] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.2 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions may allow an authenticated attacker to access to the database via shell commands.
References
History

Wed, 23 Oct 2024 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: fortinet

Published: 2023-05-03T21:27:00.343Z

Updated: 2024-10-23T14:27:47.396Z

Reserved: 2023-02-20T15:09:20.635Z

Link: CVE-2023-26203

cve-icon Vulnrichment

Updated: 2024-08-02T11:39:06.592Z

cve-icon NVD

Status : Modified

Published: 2023-05-03T22:15:18.357

Modified: 2024-11-21T07:50:54.487

Link: CVE-2023-26203

cve-icon Redhat

No data.