"Fortinet Plugs Critical Security Hole in FortiNAC, With a PoC Incoming (CVE-2022-39952)"
Forty vulnerabilities have been fixed in a number of Fortinet products, including two critical vulnerabilities impacting FortiNAC and FortiWeb. Since cybercriminals like exploiting vulnerabilities in Fortinet enterprise solutions, and a proof-of-concept (PoC) exploit for one of the holes is scheduled to be released soon, administrators are urged to patch as soon as possible. CVE-2022-39952 is an external control of file name or path vulnerability in the webserver of the network access control product FortiNAC. An unauthenticated attacker can exploit this flaw to perform arbitrary writes on a vulnerable system. The issue has been resolved in FortiNAC versions 9.4.1 and above, 9.2.6 and above, 9.1.8 and higher, and 7.2.0 and higher. Horizon3's Attack Team has previously announced that a PoC and blog post describing the attack will be released shortly. This article continues to discuss the fix, potential exploitation, and impact of the vulnerabilities found in various Fortinet products.