Fortinet: >> Fortinac-F >> 7.2.1 Security Vulnerabilities
An improper certificate validation vulnerability [CWE-295] in FortiNAC-F version 7.2.4 and below may allow a remote and unauthenticated attacker to perform a Man-in-the-Middle attack on the HTTPS communication channel between the FortiOS device, an inventory, and FortiNAC-F.
CVSS Score
4.8
EPSS Score
0.001
Published
2025-03-14