Lucene search

FortinetCVELIST:CVE-2022-23440

HistoryApr 06, 2022 - 9:30 a.m.

CVE-2022-23440

2022-04-0609:30:14

fortinet

www.cve.org

use of hard-coded key

fortiedr collectors

local attacker

disable and uninstall

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:U/RC:C

AI Score

7.6

Confidence

High

EPSS

Percentile

5.1%

JSON

A use of hard-coded cryptographic key vulnerability [CWE-321] in the registration mechanism of FortiEDR collectors versions 5.0.2, 5.0.1, 5.0.0, 4.0.0 may allow a local attacker to disable and uninstall the collectors from the end-points within the same deployment.

CNA Affected

[
  {
    "product": "Fortinet FortiEDR",
    "vendor": "Fortinet",
    "versions": [
      {
        "status": "affected",
        "version": "FortiEDR 5.0.2, 5.0.1, 5.0.0, 4.0.0"
      }
    ]
  }
]

References

fortiguard.com/psirt/FG-IR-22-018

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:U/RC:C

AI Score

7.6

Confidence

High

EPSS

Percentile

5.1%

JSON

Related for CVELIST:CVE-2022-23440