CVE-2022-43946
7.5HIGHMultiple vulnerabilities including an incorrect permission assignment for critical resource [CWE-732] vulnerability and a time-of-check time-of-use (TOCTOU) race condition [CWE-367] vulnerability in F
Publicado: 4/11/2023Actualizado: 11/21/2024
Descripción
Multiple vulnerabilities including an incorrect permission assignment for critical resource [CWE-732] vulnerability and a time-of-check time-of-use (TOCTOU) race condition [CWE-367] vulnerability in Fortinet FortiClientWindows before 7.0.7 allows attackers on the same file sharing network to execute commands via writing data into a windows pipe.
Análisis IAImpulsado por IA
Productos Afectados
fortinetforticlient
Referencias
- https://fortiguard.com/psirt/FG-IR-22-429Vendor Advisory
- https://fortiguard.com/psirt/FG-IR-22-429Vendor Advisory