Lucene search

FortinetCVE-2022-39949

HistoryNov 02, 2022 - 12:15 p.m.

CVE-2022-39949

2022-11-0212:15:55

fortinet

web.nvd.nist.gov

cve-2022-39949

cwe-664

fortiedr

collectorwindows

edr protection

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.4

Confidence

High

EPSS

Percentile

12.6%

JSON

An improper control of a resource through its lifetime vulnerability [CWE-664] in FortiEDR CollectorWindows 4.0.0 through 4.1, 5.0.0 through 5.0.3.751, 5.1.0 may allow a privileged user to terminate the FortiEDR processes with special tools and bypass the EDR protection.

Affected configurations

Nvd

Node

fortinetfortiedrRange4.0.0–4.1.0

fortinetfortiedrRange5.0.0–5.0.3.751

fortinetfortiedrRange5.1.0–5.2.0.2288

AND

microsoftwindowsMatch-

VendorProductVersionCPE
fortinetfortiedr*cpe:2.3:a:fortinet:fortiedr:*:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
fortinet	fortiedr	*	cpe:2.3:a:fortinet:fortiedr::::::::
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*

CNA Affected

[
  {
    "vendor": "Fortinet",
    "product": "Fortinet FortiEDR",
    "versions": [
      {
        "version": "FortiEDR CollectorWindows 4.0.0  through 4.1, 5.0.0 through 5.0.3.751, 5.1.0",
        "status": "affected"
      }
    ]
  }
]

References

fortiguard.com/psirt/FG-IR-22-218

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.4

Confidence

High

EPSS

Percentile

12.6%

JSON

Related for CVE-2022-39949