CVE-2022-39952

CVE-2022-39952 — A external control of file name or path in Fortinet FortiNAC versions 9.4.0, 9.2

📅 2023-02-16

🔴 Critical 🔥 Yes NVD Exploit Fortinet CVSS 9.8 🎯 EPSS 93.78%

📋 الوصف الكامل

A external control of file name or path in Fortinet FortiNAC versions 9.4.0, 9.2.0 through 9.2.5, 9.1.0 through 9.1.7, 8.8.0 through 8.8.11, 8.7.0 through 8.7.6, 8.6.0 through 8.6.5, 8.5.0 through 8.5.4, 8.3.7 may allow an unauthenticated attacker to execute unauthorized code or commands via specifically crafted HTTP request.

💻 الأنظمة المتأثرة

Fortinet

⚠️ نوع التهديد

Exploit

🔗 CVE ID

CVE-2022-39952

📡 المصدر

NVD

✅ الحلول والتخفيف

Update to v9.4.0 | Fortinet PSIRT Advisory

🔗 المصدر الأصلي ← 📘 NVD ← ⚡ CISA KEV ←