Fortinet FortiClient Enterprise Management Server (EMS) 6.2.7

CPE Details

Fortinet FortiClient Enterprise Management Server (EMS) 6.2.7
fortinet
forticlient_enterprise_management_server
6.2.7
2021-12-02
14h26 +00:00
2021-12-02
14h30 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:fortinet:forticlient_enterprise_management_server:6.2.7:*:*:*:*:*:*:*

Informations

Vendor

fortinet

Product

forticlient_enterprise_management_server

Version

6.2.7

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-45581 2024-02-15 13h59 +00:00 An improper privilege management vulnerability [CWE-269] in Fortinet FortiClientEMS version 7.2.0 through 7.2.2 and before 7.0.10 allows an Site administrator with Super Admin privileges to perform global administrative operations affecting other sites via crafted HTTP or HTTPS requests.
8.8
High
CVE-2021-41030 2021-12-08 16h51 +00:00 An authentication bypass by capture-replay vulnerability [CWE-294] in FortiClient EMS versions 7.0.1 and below and 6.4.4 and below may allow an unauthenticated attacker to impersonate an existing user by intercepting and re-using valid SAML authentication messages.
9.1
Critical
CVE-2021-32592 2021-12-01 10h27 +00:00 An unsafe search path vulnerability in FortiClientWindows 7.0.0, 6.4.6 and below, 6.2.x, 6.0.x and FortiClientEMS 7.0.0, 6.4.6 and below, 6.2.x, 6.0.x may allow an attacker to perform a DLL Hijack attack on affected devices via a malicious OpenSSL engine library in the search path.
7.8
High
CVE-2020-15940 2021-11-02 16h49 +00:00 An improper neutralization of input vulnerability [CWE-79] in FortiClientEMS versions 6.4.1 and below and 6.2.9 and below may allow a remote authenticated attacker to inject malicious script/tags via the name parameter of various sections of the server.
5.4
Medium