Cryptographic Vulnerabilities in Fortinet FortiNAC: Decryption and Message Forgery Exploits

Cryptographic Vulnerabilities in Fortinet FortiNAC: Decryption and Message Forgery Exploits

CVE-2022-40675 · HIGH Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Some cryptographic issues in Fortinet FortiNAC versions 9.4.0 through 9.4.1, 9.2.0 through 9.2.7, 9.1.0 through 9.1.8, 8.8.0 through 8.8.11, 8.7.0 through 8.7.6, 8.6.0 through 8.6.5, 8.5.0 through 8.5.4, 8.3.7 may allow an attacker to decrypt and forge protocol communication messages.

Learn more about our Cis Benchmark Audit For Fortinet.