Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A privilege escalation vulnerability in FortiNAC version below 8.8.2 may allow an admin user to escalate the privileges to root by abusing the sudo privileges.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
N/A
Vulnerability Title
Fortinet FortiNAC 权限许可和访问控制问题漏洞
Vulnerability Description
Fortinet FortiNAC是美国飞塔(Fortinet)公司的一套网络访问控制解决方案。该产品主要用于网络访问控制和物联网安全防护。 FortiNAC 存在权限许可和访问控制问题漏洞,该漏洞源于应用程序未正确施加安全限制。远程管理员可以滥用sudo特权并将特权升级为root用户,该漏洞使远程用户可以在系统上提升特权。以下产品及版本受到影响:FortiNAC:8.3.0、8.3.1、8.3.2、8.3 .3、8.3.4、8.3.5、8.3.6、8.3.7、8.5.0、8.5.1、8.5.2、8.5.
CVSS Information
N/A
Vulnerability Type
N/A