FortiEDR - Denial of service due to folder access permission change
Fortinet PSIRT Advisories
Fortinet PSIRT Contact:
Website: https://fortiguard.fortinet.com/faq/psirt-contact
FG-IR-22-052
Final
1
1
2022-04-05T00:00:00
Current version
2022-04-05T00:00:00
2022-04-05T00:00:00
AnĀ improper control of a resource through its lifetime [CWE-664] vulnerability in FortiEDR Collector may allow a privileged attacker to make the application unresponsive via changingĀ its root directory access permission.
None
Denial of service
FortiEDR Collector version 5.0.3 b0233 and earlier
Upgrade to FortiEDR Collector version 5.0.3 b0508 or above
Fortinet is pleased to thank Mike de Almeida for reporting this vulnerability under responsible disclosure
FortiEDR 5.0.1
FortiEDR 5.0.0
FortiEDR 4.0.0
FortiEDR - Denial of service due to folder access permission change
CVE-2022-23446
FortiEDR-5.0.1
FortiEDR-5.0.0
FortiEDR-4.0.0
4
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C
https://fortiguard.fortinet.com/psirt/FG-IR-22-052
FortiEDR - Denial of service due to folder access permission change
Reference>