Unauthenticated Access to Sensitive Information Vulnerability in FortiNAC

Unauthenticated Access to Sensitive Information Vulnerability in FortiNAC

CVE-2022-43951 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiNAC 9.4.1 and below, 9.2.6 and below, 9.1.8 and below, 8.8.11 and below, 8.7.6 and below may allow an unauthenticated attacker to access sensitive information via crafted HTTP requests.

Learn more about our Web Application Penetration Testing UK.