First published: Thu Dec 09 2021(Updated: )
A improper control of a resource through its lifetime in Fortinet FortiClientWindows version 6.4.1 and 6.4.0, version 6.2.9 and below, version 6.0.10 and below allows attacker to cause a complete denial of service of its components via changes of directory access permissions.
Credit: psirt@fortinet.com psirt@fortinet.com
Affected Software | Affected Version | How to fix |
---|---|---|
Fortinet FortiClient Windows | >=5.0.0<=5.0.11 | |
Fortinet FortiClient Windows | >=5.4.0<=5.4.5 | |
Fortinet FortiClient Windows | >=5.6.0<=5.6.6 | |
Fortinet FortiClient Windows | >=6.0.0<=6.0.10 | |
Fortinet FortiClient Windows | >=6.2.0<=6.2.9 | |
Fortinet FortiClient Windows | =4.0.1 | |
Fortinet FortiClient Windows | =4.0.2 | |
Fortinet FortiClient Windows | =4.0.3 | |
Fortinet FortiClient Windows | =4.0.4 | |
Fortinet FortiClient Windows | =4.1.0 | |
Fortinet FortiClient Windows | =4.1.1 | |
Fortinet FortiClient Windows | =4.1.2 | |
Fortinet FortiClient Windows | =4.1.3 | |
Fortinet FortiClient Windows | =4.2.0 | |
Fortinet FortiClient Windows | =4.2.1 | |
Fortinet FortiClient Windows | =4.2.2 | |
Fortinet FortiClient Windows | =4.2.3 | |
Fortinet FortiClient Windows | =4.2.4 | |
Fortinet FortiClient Windows | =4.2.5 | |
Fortinet FortiClient Windows | =4.2.6 | |
Fortinet FortiClient Windows | =4.2.7 | |
Fortinet FortiClient Windows | =4.3.0 | |
Fortinet FortiClient Windows | =4.3.1 | |
Fortinet FortiClient Windows | =4.3.2 | |
Fortinet FortiClient Windows | =4.3.3 | |
Fortinet FortiClient Windows | =4.3.4 | |
Fortinet FortiClient Windows | =4.3.5 | |
Fortinet FortiClient Windows | =5.2.0 | |
Fortinet FortiClient Windows | =5.2.1 | |
Fortinet FortiClient Windows | =5.2.2 | |
Fortinet FortiClient Windows | =5.2.3 | |
Fortinet FortiClient Windows | =5.2.4 | |
Fortinet FortiClient Windows | =5.2.5 | |
Fortinet FortiClient Windows | =5.2.6 | |
Fortinet FortiClient Windows | =6.4.0 | |
Fortinet FortiClient Windows | =6.4.1 | |
>=5.0.0<=5.0.11 | ||
>=5.4.0<=5.4.5 | ||
>=5.6.0<=5.6.6 | ||
>=6.0.0<=6.0.10 | ||
>=6.2.0<=6.2.9 | ||
=4.0.1 | ||
=4.0.2 | ||
=4.0.3 | ||
=4.0.4 | ||
=4.1.0 | ||
=4.1.1 | ||
=4.1.2 | ||
=4.1.3 | ||
=4.2.0 | ||
=4.2.1 | ||
=4.2.2 | ||
=4.2.3 | ||
=4.2.4 | ||
=4.2.5 | ||
=4.2.6 | ||
=4.2.7 | ||
=4.3.0 | ||
=4.3.1 | ||
=4.3.2 | ||
=4.3.3 | ||
=4.3.4 | ||
=4.3.5 | ||
=5.2.0 | ||
=5.2.1 | ||
=5.2.2 | ||
=5.2.3 | ||
=5.2.4 | ||
=5.2.5 | ||
=5.2.6 | ||
=6.4.0 | ||
=6.4.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-43204 is a vulnerability that allows an attacker to cause a complete denial of service in Fortinet FortiClientWindows.
Fortinet FortiClientWindows versions 6.4.1, 6.4.0, 6.2.9 and below, 6.0.10 and below are affected by CVE-2021-43204.
CVE-2021-43204 has a severity rating of 4.4, which is considered medium.
To fix CVE-2021-43204, update your Fortinet FortiClientWindows to a version that is not affected.
You can find more information about CVE-2021-43204 in the advisory published by FortiGuard: https://fortiguard.com/advisory/FG-IR-21-167