Fortinet has released updates to address a critical security vulnerability affecting its FortiNAC network access control solution that could lead to the execution of arbitrary code.
tracked CVE-2023-33299, the CVSS scoring system rates this flaw a severity of 9.6 out of 10. This is described as a case of Java untrusted object deserialization.
“Deserialization of Untrusted Data Vulnerability” [CWE-502] FortiNAC may allow unauthenticated users to execute unauthorized code or commands via specially crafted requests to the tcp/1050 service,” Fortinet said in an advisory published last week. I’m here.
This shortcoming affects the following products with patches available from FortiNAC versions 7.2.2, 9.1.10, 9.2.8, and 9.4.3:
- FortiNAC versions 9.4.0 through 9.4.2
- FortiNAC versions 9.2.0 through 9.2.7
- FortiNAC versions 9.1.0 through 9.1.9
- FortiNAC versions 7.2.0 through 7.2.1
- All versions of FortiNAC 8.8
- All versions of FortiNAC 8.7
- FortiNAC 8.6 All versions
- All versions of FortiNAC 8.5, and
- All versions of FortiNAC 8.3
Fortinet has also resolved a medium severity vulnerability tracked as CVE-2023-33300 (CVSS score: 4.8). This is an improper access control issue affecting FortiNAC 9.4.0 – 9.4.3 and FortiNAC 7.2.0 – 7.2.1. This issue has been fixed in FortiNAC versions 7.2.2 and 9.4.4.
Florian Hauser of German cybersecurity firm CODE WHITE is credited with discovering and reporting the two bugs.
This alert is the active exploitation of another critical vulnerability affecting FortiOS and FortiProxy (CVE-2023-27997, CVSS score: 9.2), allowing a remote attacker to send a specially crafted request may be able to execute arbitrary code or commands through
Fortinet acknowledged earlier this month that the issue may have been exploited in limited attacks targeting government, manufacturing and critical infrastructure sectors, and notified the U.S. Cybersecurity and Infrastructure Security Agency (CISA) of the issue. added to the Known Exploited Vulnerabilities (KEV) Catalog. .
This also marks over 4 months since Fortinet addressed a critical bug in FortiNAC (CVE-2022-39952, CVSS score: 9.8) that could lead to the execution of arbitrary code . This flaw began to be actively exploited shortly after a proof of concept (PoC) was made available.
In a related development, Grafana has patched a critical security vulnerability (CVE-2023-3128) that allows malicious attackers to bypass authentication and hijack accounts that use Azure Active Directory for authentication. Released.
“If exploited, the attacker would gain complete control over the user’s account, including access to the customer’s private data and confidential information,” Grafana said. “If exploited, the attacker would gain complete control over the user’s account, including access to the customer’s private data and sensitive information.”
