CVE-2020-9292

Summary

An unquoted service path vulnerability in the FortiSIEM Windows Agent component may allow an attacker to gain elevated privileges via the AoWinAgt executable service path.

Affected Software

VendorProductVersion RangeStatus
n/aFortinet FortiSIEMWindowsAgentFortiSIEMWindowsAgent 3.1.2affected

Weaknesses

  • Escalation of privilege

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References