FortiEDR CollectorWindows Privilege Escalation Vulnerability

FortiEDR CollectorWindows Privilege Escalation Vulnerability

CVE-2022-39949 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

An improper control of a resource through its lifetime vulnerability [CWE-664] in FortiEDR CollectorWindows 4.0.0 through 4.1, 5.0.0 through 5.0.3.751, 5.1.0 may allow a privileged user to terminate the FortiEDR processes with special tools and bypass the EDR protection.

Learn more about our User Device Pen Test.