Protection may be disabled by local attacker Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-23-306 Final 1 1 2023-11-14T00:00:00 Current version 2023-11-14T00:00:00 2023-11-07T00:00:00 An improper access control vulnerabilty [CWE-284] in FortiEDRCollectorWindows may allow a local attacker to prevent the collector service to start in the next system reboot by tampering with some registry keys of the service. None Denial of service FortiEDR CollectorWindows 5.2 all versions are not affectedFortiEDR CollectorWindows 5.1 all versions are not affectedFortiEDR CollectorWindows version 5.0.0 through 5.0.2 Please upgrade to FortiEDRCollectorWindows version 5.2.0.4581 or abovePlease upgrade to FortiEDRCollectorWindows version 5.0.3.1016 or above FortiEDR CollectorWindows 5.0.2 FortiEDR CollectorWindows 5.0.1 FortiEDR CollectorWindows 5.0.0 CVE-2023-44248 FortiEDR CollectorWindows-5.0.2 FortiEDR CollectorWindows-5.0.1 FortiEDR CollectorWindows-5.0.0 4.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H/E:P/RL:X/RC:R https://fortiguard.fortinet.com/psirt/FG-IR-23-306 Protection may be disabled by local attacker Reference>