CVE Vulnerabilities

CVE-2022-39949

Published: Nov 02, 2022 | Modified: Aug 08, 2023
CVSS 3.x
5.5
MEDIUM
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

An improper control of a resource through its lifetime vulnerability [CWE-664] in FortiEDR CollectorWindows 4.0.0 through 4.1, 5.0.0 through 5.0.3.751, 5.1.0 may allow a privileged user to terminate the FortiEDR processes with special tools and bypass the EDR protection.

Affected Software

Name Vendor Start Version End Version
Fortiedr Fortinet 4.0.0 (including) 4.1.0 (including)
Fortiedr Fortinet 5.0.0 (including) 5.0.3.751 (including)
Fortiedr Fortinet 5.1.0 (including) 5.2.0.2288 (including)

References