CVE-2022-23446

Summary

A improper control of a resource through its lifetime in Fortinet FortiEDR version 5.0.3 and earlier allows attacker to make the whole application unresponsive via changing its root directory access permission.

Affected Software

VendorProductVersion RangeStatus
FortinetFortinet FortiEDRFortiEDR 5.0.2, 5.0.1, 5.0.0, 4.0.0affected

Weaknesses

  • Denial of service

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References