Lucene search
+L

7 matches found

OSV
OSV
added 2026/02/10 4:16 p.m.5 views

CVE-2025-62676

An Improper Link Resolution Before File Access 'Link Following' vulnerability CWE-59 vulnerability in Fortinet FortiClientWindows 7.4.0 through 7.4.4, FortiClientWindows 7.2.0 through 7.2.12, FortiClientWindows 7.0 all versions may allow a local low-privilege attacker to perform an arbitrary file...

7.1CVSS5.9AI score0.00214EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/10 3:39 p.m.35 views

CVE-2025-62676

An Improper Link Resolution Before File Access 'Link Following' vulnerability CWE-59 vulnerability in Fortinet FortiClientWindows 7.4.0 through 7.4.4, FortiClientWindows 7.2.0 through 7.2.12, FortiClientWindows 7.0 all versions may allow a local low-privilege attacker to perform an arbitrary file...

7.1CVSS0.00214EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/10 3:39 p.m.5 views

CVE-2025-62676

An Improper Link Resolution Before File Access 'Link Following' vulnerability CWE-59 vulnerability in Fortinet FortiClientWindows 7.4.0 through 7.4.4, FortiClientWindows 7.2.0 through 7.2.12, FortiClientWindows 7.0 all versions may allow a local low-privilege attacker to perform an arbitrary file...

7.1CVSS5.7AI score0.00214EPSS
Exploits0References1
OSV
OSV
added 2024/11/13 12:15 p.m.3 views

CVE-2024-47574

A authentication bypass using an alternate path or channel in Fortinet FortiClientWindows version 7.4.0, versions 7.2.4 through 7.2.0, versions 7.0.12 through 7.0.0, and 6.4.10 through 6.4.0 allows low privilege attacker to execute arbitrary code with high privilege via spoofed named pipe message...

7.8CVSS7.8AI score0.00462EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/13 11:15 a.m.34 views

CVE-2024-47574

A authentication bypass using an alternate path or channel in Fortinet FortiClientWindows version 7.4.0, versions 7.2.4 through 7.2.0, versions 7.0.12 through 7.0.0, and 6.4.10 through 6.4.0 allows low privilege attacker to execute arbitrary code with high privilege via spoofed named pipe message...

7.8CVSS0.00462EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/06/21 12:0 a.m.4 views

AtlasVPN 安全漏洞

AtlasVPN is a free VPN application from AtlasVPN, Inc. A security vulnerability exists in versions prior to AtlasVPN 2.42, which stems from a lack of proper security controls over named pipe messages, and is exploited by an attacker to gain privileges on a Windows computer with the AtlasVPN clien...

9CVSS7.9AI score0.00614EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/06/20 5:56 a.m.5 views

CVE-2022-23171

AtlasVPN - Privilege Escalation Lack of proper security controls on named pipe messages can allow an attacker with low privileges to send a malicious payload and gain SYSTEM permissions on a windows computer where the AtlasVPN client is installed...

9CVSS7.3AI score0.00614EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder