CVE-2022-40675

Name of the Vulnerable Software and Affected Versions Fortinet FortiNAC versions 8.3.7, 8.5.0 through 8.5.4, 8.6.0 through 8.6.5, 8.7.0 through 8.7.6, 8.8.0 through 8.8.11, 9.1.0 through 9.1.8, 9.2.0 through 9.2.7, 9.4.0 through 9.4.1

Description Some cryptographic issues in Fortinet FortiNAC may allow an attacker to decrypt and forge protocol communication messages.

Recommendations For Fortinet FortiNAC versions 8.3.7, consider updating to a version that addresses the cryptographic issues. For Fortinet FortiNAC versions 8.5.0 through 8.5.4, consider updating to a version that addresses the cryptographic issues. For Fortinet FortiNAC versions 8.6.0 through 8.6.5, consider updating to a version that addresses the cryptographic issues. For Fortinet FortiNAC versions 8.7.0 through 8.7.6, consider updating to a version that addresses the cryptographic issues. For Fortinet FortiNAC versions 8.8.0 through 8.8.11, consider updating to a version that addresses the cryptographic issues. For Fortinet FortiNAC versions 9.1.0 through 9.1.8, consider updating to a version that addresses the cryptographic issues. For Fortinet FortiNAC versions 9.2.0 through 9.2.7, consider updating to a version that addresses the cryptographic issues. For Fortinet FortiNAC versions 9.4.0 through 9.4.1, consider updating to a version that addresses the cryptographic issues. At the moment, there is no information about a newer version that contains a fix for this vulnerability.