Lucene search
FortiGuard LabsFG-IR-22-336HistoryApr 11, 2023 - 12:00 a.m.
FortiClient (Windows) - Arbitrary file creation from unprivileged users due to process impersonation
2023-04-1100:00:00
FortiGuard Labs
www.fortiguard.com
39
forticlient
windows
vulnerability
arbitrary file creation
filesystem
authorization
cwe-863
process impersonation
low privileged attacker
0.0004 Low
EPSS
Percentile
9.0%
An incorrect authorization [CWE-863] vulnerability in FortiClient (Windows) may allow a local low privileged attacker to perform arbitrary file creation in the device filesystem.
Related
nessus
nessus
nvd
nvd
CVE-2022-40682
2023-04-11 17:15:07
prion
prion
Authorization
2023-04-11 17:15:00
cve
cve
CVE-2022-40682
2023-04-11 17:15:07
cvelist
cvelist
CVE-2022-40682
2023-04-11 16:05:59