CVE-2022-26113

An execution with unnecessary privileges vulnerability [CWE-250] in FortiClientWindows 7.0.0 through 7.0.3, 6.4.0 through 6.4.7, 6.2.0 through 6.2.9, 6.0.0 through 6.0.10 may allow a local attacker to perform an arbitrary file write on the system.
References
Link Resource
https://fortiguard.com/psirt/FG-IR-22-044 Patch Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:fortinet:forticlient:*:*:*:*:*:windows:*:*
cpe:2.3:a:fortinet:forticlient:*:*:*:*:*:windows:*:*
cpe:2.3:a:fortinet:forticlient:*:*:*:*:*:windows:*:*
cpe:2.3:a:fortinet:forticlient:*:*:*:*:*:windows:*:*

History

27 Jul 2022, 12:40

Type Values Removed Values Added
CWE CWE-269
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.1
References (CONFIRM) https://fortiguard.com/psirt/FG-IR-22-044 - (CONFIRM) https://fortiguard.com/psirt/FG-IR-22-044 - Patch, Vendor Advisory
CPE cpe:2.3:a:fortinet:forticlient:*:*:*:*:*:windows:*:*

19 Jul 2022, 15:11

Type Values Removed Values Added
New CVE

Information

Published : 2022-07-19 14:15

Updated : 2024-02-04 22:51


NVD link : CVE-2022-26113

Mitre link : CVE-2022-26113

CVE.ORG link : CVE-2022-26113


JSON object : View

Products Affected

fortinet

  • forticlient
CWE
CWE-269

Improper Privilege Management