Fortinet has recently launched updates to fix a severe vulnerability discovered in its FortiNAC network access control solution. This access solution, which operates on a zero-trust model, enables organizations to monitor devices and users on their networks and exercise precise control over network access policies.
Identified as CVE-2023-33299 with a high CVSS score of 9.6, this critical flaw pertains to a problem associated with processing untrusted data, which can result in the execution of remote code (RCE). In an advisory, Fortinet clarifies that an unauthorized individual without authentication could exploit this vulnerability by sending specifically crafted requests to the TCP/1050 service, thus executing unauthorized code or commands.
Read More: Fortinet Patches Critical RCE Vulnerability in FortiNAC
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.