Open Redirect Vulnerability in FortiNAC-F and FortiNAC Versions 7.2.0 and below

Open Redirect Vulnerability in FortiNAC-F and FortiNAC Versions 7.2.0 and below

CVE-2022-43950 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N

A URL redirection to untrusted site ('Open Redirect') vulnerability [CWE-601] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.1 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions may allow an unauthenticated attacker to redirect users to any arbitrary website via a crafted URL.

Learn more about our Web App Pen Testing.