Loading
A deserialization of untrusted data in Fortinet FortiNAC below 7.2.1, below 9.4.3, below 9.2.8 and all earlier versions of 8.x allows attacker to execute unauthorized code or commands via specifically crafted request on inter-server communication port. Note FortiNAC versions 8.x will not be fixed.
Use CWE-502, Fortinet vendor hub and Fortinac product page to widen CVE-2023-33299 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2022-39946, CVE-2023-22633 and CVE-2024-31488 for nearby disclosures in the same product family.