Forticlient Endpoint Management Server Security Vulnerabilities and Issues — Forticlient Endpoint Management Server CVE List

Lucene search

FortinetForticlient Endpoint Management Server

3 matches found

CVE•added 2021/12/16 7:15 p.m.•56 views

CVE-2021-41028

A combination of a use of hard-coded cryptographic key vulnerability [CWE-321] in FortiClientEMS 7.0.1 and below, 6.4.6 and below and an improper certificate validation vulnerability [CWE-297] in FortiClientWindows, FortiClientLinux and FortiClientMac 7.0.1 and below, 6.4.6 and below may allow an u...

8.2CVSS7.4AI score0.00136EPSS

CVE•added 2021/10/06 10:15 a.m.•47 views

CVE-2021-24019

An insufficient session expiration vulnerability [CWE- 613] in FortiClientEMS versions 6.4.2 and below, 6.2.8 and below may allow an attacker to reuse the unexpired admin user session IDs to gain admin privileges, should the attacker be able to obtain that session ID (via other, hypothetical attack...

9.8CVSS9.4AI score0.1519EPSS

CVE•added 2021/10/06 10:15 a.m.•34 views

CVE-2020-15941

A path traversal vulnerability [CWE-22] in FortiClientEMS versions 6.4.1 and below; 6.2.8 and below may allow an authenticated attacker to inject directory traversal character sequences to add/delete the files of the server via the name parameter of Deployment Packages.

5.5CVSS5.3AI score0.01115EPSS