Palo Alto IPS signature coverage for Fortinet FortiNAC Vulnerability CVE-2022-39952

Palo Alto IPS signature coverage for Fortinet FortiNAC Vulnerability CVE-2022-39952

8063
Created On 02/22/23 03:24 AM - Last Modified 04/22/24 07:04 AM


Environment


  • Palo Alto Firewalls

  • FortiNAC product

Cause


Fortinet released a PSIRT that details CVE-2022-39952, a Critical vulnerability (CVSSv3 Score: 9.8) affecting its FortiNAC product allows an unauthenticated attacker to write arbitrary files on the system and as a result obtain remote code execution in the context of the root user.

Resolution


1) Palo Alto IPS coverage of CVE-2022-39952:

Unique Threat ID 93513 was released in application and threat package version 8680 for coverage.

2) The resolution provided by FortiGuard Labs can be found in the PSIRT Advisory link below:

FortiNAC - External Control of File Name or Path in keyUpload scriptlet

 

 

 

 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000kH4DCAU&lang=en_US%E2%80%A9&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language