Fortinet plugs critical security hole in FortiNAC, with a PoC incoming (CVE-2022-39952)

Fortinet has dropped fixes for 40 vulnerabilities in a variety of its products, including two critical vulnerabilities (CVE-2022-39952, CVE-2021-42756) affecting its FortiNAC and FortiWeb solutions. Since cyberattackers love to exploit vulnerabilities in Fortinet enterprise solutions and a PoC exploit for CVE-2022-39952 is expected to be released soon, admins are advised to get a move on patching. About the vulnerabilities CVE-2022-39952 is an external control of file name or path vulnerability in the webserver of FortiNAC, … More →

The post …

control critical critical vulnerabilities cve cve-2022-39952 cyberattackers don't miss enterprise exploit external fixes fortinac fortinet fortiweb horizon3.ai hot stuff love name patching poc poc exploit products security security update solutions vulnerabilities vulnerability