FortiClient Vulnerability

SQL Injection Vulnerabilities for Endpoint Protector

Description

SQL injection vulnerability in the device registration component in wsf/webservice.php in CoSoSys Endpoint Protector 4 4.3.0.4 and 4.4.0.2 allows remote attackers to execute arbitrary SQL commands via unspecified parameters.

Affected Applications

Endpoint Protector

CVE References

CVE-2014-3932

Other References

https://nvd.nist.gov/vuln/detail/CVE-2014-3932

ID	69776
Created	Nov 25, 2021
Description Updated	Feb 16, 2022
Risk
Coverage	FortiClient
OS	Windows
Vendor	CoSoSys
Patch	manual
Application	Endpoint Protector

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiClient Vulnerability

SQL Injection Vulnerabilities for Endpoint Protector

Description

Affected Applications

CVE References

Other References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

FortiClient Vulnerability

SQL Injection Vulnerabilities for Endpoint Protector

Description

Affected Applications

CVE References

Other References

Threat Intelligence
Center