Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
fortinetFortiGuard LabsFG-IR-23-074
HistoryJun 23, 2023 - 12:00 a.m.

FortiNAC - java untrusted object deserialization RCE

2023-06-2300:00:00
FortiGuard Labs
www.fortiguard.com
11
fortinac
deserialization
vulnerability
rce
crafted requests
tcp/1050 service
unauthorized code
unauthorized commands
unauthenticated user
cwe-502
java

0.002 Low

EPSS

Percentile

57.2%

JSON

A deserialization of untrusted data vulnerability [CWE-502] in FortiNAC may allow an unauthenticated user to execute unauthorized code or commands via specifically crafted requests to the tcp/1050 service.

Related

nessus 1
prion 1
cve 1
nvd 1
cvelist 1
thn 1
nessus
nessus
Fortinet FortiNAC RCE (FG-IR-23-074)
2023-06-23 00:00:00
prion
prion
Deserialization of untrusted data
2023-06-23 08:15:00
cve
cve
CVE-2023-33299
2023-06-23 08:15:09
nvd
nvd
CVE-2023-33299
2023-06-23 08:15:09
cvelist
cvelist
CVE-2023-33299
2023-06-23 07:46:37
thn
thn
New Fortinet's FortiNAC Vulnerability Exposes Networks to Code Execution Attacks
2023-06-27 05:35:00

0.002 Low

EPSS

Percentile

57.2%

JSON
Related for FG-IR-23-074
nessus1prion1cve1nvd1cvelist1thn1