Lucene search
HistoryJul 19, 2022 - 2:15 p.m.
CVE-2022-26113
7.1 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
0.0004 Low
EPSS
Percentile
5.1%
An execution with unnecessary privileges vulnerability [CWE-250] in FortiClientWindows 7.0.0 through 7.0.3, 6.4.0 through 6.4.7, 6.2.0 through 6.2.9, 6.0.0 through 6.0.10 may allow a local attacker to perform an arbitrary file write on the system.
Affected configurations
Node
fortinetforticlientRange6.0.0–6.0.10windows
ORfortinetforticlientRange6.2.0–6.2.9windows
ORfortinetforticlientRange6.4.0–6.4.7windows
ORfortinetforticlientRange7.0.0–7.0.3windows
References
Related
rhino
rhino
CVE-2022-26113: FortiClient Arbitrary File Write As SYSTEM
2022-08-30 12:26:00
prion
prion
Design/Logic Flaw
2022-07-19 14:15:00
fortinet
fortinet
FortiClient (Windows) - Arbitrary file write as SYSTEM
2022-06-07 00:00:00
cve
cve
CVE-2022-26113
2022-07-19 14:15:08
cvelist
cvelist
CVE-2022-26113
2022-07-18 16:36:04
nessus
nessus
Fortinet FortiClient (FG-IR-22-044)
2024-06-14 00:00:00
7.1 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
0.0004 Low
EPSS
Percentile
5.1%
Related for NVD:CVE-2022-26113