A use of hard-coded credentials vulnerability [CWE-798] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.2 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions may allow an authenticated attacker to access to the database via shell commands.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/psirt/FG-IR-22-520 |
History
Wed, 23 Oct 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2023-05-03T21:27:00.343Z
Updated: 2024-10-23T14:27:47.396Z
Reserved: 2023-02-20T15:09:20.635Z
Link: CVE-2023-26203
Vulnrichment
Updated: 2024-08-02T11:39:06.592Z
NVD
Status : Modified
Published: 2023-05-03T22:15:18.357
Modified: 2024-11-21T07:50:54.487
Link: CVE-2023-26203
Redhat
No data.