First published: Tue Nov 14 2023(Updated: )
A incorrect authorization in Fortinet FortiClient (Windows) 7.0.0 - 7.0.7, 6.4.0 - 6.4.9, 6.2.0 - 6.2.9 and 6.0.0 - 6.0.10 allows an attacker to cause denial of service via sending a crafted request to a specific named pipe.
|Affected Software||Affected Version||How to fix|
|Fortinet FortiClient Windows||>=6.0.0<=6.0.10|
|Fortinet FortiClient Windows||>=6.2.0<=6.2.9|
|Fortinet FortiClient Windows||>=6.4.0<=6.4.8|
|Fortinet FortiClient Windows||>=7.0.0<=7.0.7|
CVE-2022-40681 is a vulnerability in Fortinet FortiClient (Windows) that allows an attacker to cause denial of service.
CVE-2022-40681 has a severity value of 7.1 (high).
Fortinet FortiClient (Windows) versions 7.0.0 - 7.0.7, 6.4.0 - 6.4.9, 6.2.0 - 6.2.9, and 6.0.0 - 6.0.10 are affected by CVE-2022-40681.
An attacker can exploit CVE-2022-40681 by sending a crafted request to a specific named pipe.
Fortinet has released a security advisory with mitigation steps for CVE-2022-40681. Please refer to the FortiGuard advisory for more information.