Lucene search
China National Vulnerability DatabaseCNVD-2021-99660HistoryDec 13, 2021 - 12:00 a.m.
Fortinet FortiClient for Windows License Error Vulnerability
2021-12-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
fortinet forticlient
fabric agent
protection
compliance
secure access
vulnerability
authorization error
unauthenticated attacker
bypass webfilter controls
session-id parameter
cnvd
EPSS
0.001
Percentile
39.0%
Fortinet FortiClient is a fabric agent from Fortinet USA, Inc. It is used to provide protection, compliance and secure access in a single modular lightweight client.Fortinet FortiClient for Windows 7.0.0, versions 6.4.6 and earlier and 6.2.8 and earlier are vulnerable to an authorization error. An unauthenticated attacker could exploit the vulnerability to bypass webfilter controls by modifying the session-id parameter.
Related
cvelist
cvelist
CVE-2021-36167
2021-12-09 09:33:17
fortinet
fortinet
FortiClient (Windows) - Web filter bypass
2021-12-07 00:00:00
nvd
nvd
CVE-2021-36167
2021-12-09 10:15:11
prion
prion
Authorization
2021-12-09 10:15:00
nessus
nessus
Fortinet FortiClient (FG-IR-20-127)
2024-06-14 00:00:00
cve
cve
CVE-2021-36167
2021-12-09 10:15:11