Lucene search
HistoryNov 14, 2023 - 6:15 p.m.
CVE-2023-44248
improper access control
fortiedrcollectorwindows
registry keys
local attacker
system reboot
cve-284
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
5.1%
An improper access control vulnerability [CWE-284] in FortiEDRCollectorWindows version 5.2.0.4549 and below, 5.0.3.1007 and below, 4.0 all may allow a local attacker to prevent the collector service to start in the next system reboot by tampering with some registry keys of the service.
Affected configurations
Node
fortinetfortiedrRange5.0.3–5.0.3.1007windows
ORfortinetfortiedrRange5.2.0–5.2.0.4549windows
ORfortinetfortiedrMatch4.0.0windows
References
Related
vulnrichment
vulnrichment
CVE-2023-44248
2023-11-14 18:05:53
cvelist
cvelist
CVE-2023-44248
2023-11-14 18:05:53
prion
prion
Improper access control
2023-11-14 18:15:00
cnvd
cnvd
Fortinet FortiEDR Access Control Error Vulnerability (CNVD-2023-98184)
2023-11-17 00:00:00
cve
cve
CVE-2023-44248
2023-11-14 18:15:54
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2023-44248