A deserialization of untrusted data in Fortinet FortiNAC below 7.2.1, below 9.4.3, below 9.2.8 and all earlier versions of 8.x allows attacker to execute unauthorized code or commands via specifically crafted request on inter-server communication port. Note FortiNAC versions 8.x will not be fixed.
References
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: fortinet

Published: 2023-06-23T07:46:37.499Z

Updated: 2024-08-02T15:39:36.130Z

Reserved: 2023-05-22T07:58:22.196Z

Link: CVE-2023-33299

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-06-23T08:15:09.483

Modified: 2023-11-07T04:14:50.620

Link: CVE-2023-33299

cve-icon Redhat

No data.