An improper access control vulnerability [CWE-284] in FortiEDRCollectorWindows version 5.2.0.4549 and below, 5.0.3.1007 and below, 4.0 all may allow a local attacker to prevent the collector service to start in the next system reboot by tampering with some registry keys of the service.
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-23-306 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: fortinet
Published: 2023-11-14T18:05:53.643Z
Updated: 2023-11-14T18:05:53.643Z
Reserved: 2023-09-27T12:26:48.750Z
Link: CVE-2023-44248
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-11-14T18:15:54.470
Modified: 2023-11-21T01:39:38.243
Link: CVE-2023-44248
JSON object: View
Redhat Information
No data.
CWE