EUVD-2022-43952

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Incorrect authorization in Fortinet FortiClient allows denial of service via crafted request.

Reporter	Title	Published	Views	Family All 11
CNNVD	Fortinet FortiClient Security Vulnerability	14 Nov 202300:00	–	cnnvd
CVE	CVE-2022-40681	14 Nov 202318:08	–	cve
Cvelist	CVE-2022-40681	14 Nov 202318:08	–	cvelist
Tenable Nessus	Fortinet FortiClient Arbitrary file deletion from unprivileged users (FG-IR-22-299)	14 Jun 202400:00	–	nessus
NCSC	Vulnerabilities fixed in Fortinet FortiClient	16 Nov 202300:00	–	ncsc
NVD	CVE-2022-40681	14 Nov 202319:15	–	nvd
OSV	CVE-2022-40681	14 Nov 202319:15	–	osv
Prion	Authorization	14 Nov 202319:15	–	prion
Positive Technologies	PT-2023-13889 · Fortinet · Forticlient	14 Nov 202300:00	–	ptsecurity
RedhatCVE	CVE-2022-40681	5 Feb 202519:51	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "d5c104a0-eb62-3028-8771-b3cf9ac9ce3b",
        "vendor": {
          "name": "Fortinet"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "075dea36-24d1-3177-9ff0-eb5c02a04c68",
        "product": {
          "name": "FortiClientWindows"
        },
        "product_version": "6.2.0 ≤6.2.9"
      },
      {
        "id": "09fed75a-4d68-392f-9e82-e286114ee70a",
        "product": {
          "name": "FortiClientWindows"
        },
        "product_version": "6.0.0 ≤6.0.10"
      },
      {
        "id": "ce3da085-bef5-3dfb-8dc4-e02f706670ff",
        "product": {
          "name": "FortiClientWindows"
        },
        "product_version": "7.0.0 ≤7.0.7"
      },
      {
        "id": "e8018cb9-05a7-3f64-8186-d246a7c7577b",
        "product": {
          "name": "FortiClientWindows"
        },
        "product_version": "6.4.0 ≤6.4.8"
      }
    ]
  }
]

Source	Link
fortiguard	www.fortiguard.com/psirt/FG-IR-22-299

03 Oct 2025 20:07Current

6.9Medium risk

Vulners AI Score6.9

CVSS 3.17.1

EPSS0.00042

SSVC