FortiNAC - Improper access control on administrative panels

An access control vulnerability [CWE-284] in FortiNAC may allow a remote attacker authenticated on the administrative interface to perform unauthorized jsp calls via crafted HTTP requests.

access access control control cwe fortinac http http requests interface may panels requests vulnerability