Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A use of hard-coded cryptographic key vulnerability [CWE-321] in FortiEDR versions 5.0.2, 5.0.1, 5.0.0, 4.0.0 may allow an unauthenticated attacker on the network to disguise as and forge messages from other collectors.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
N/A
Vulnerability Title
Fortinet FortiEDR 信任管理问题漏洞
Vulnerability Description
Fortinet FortiEDR是美国Fortinet公司的一个从头开始构建的端点安全解决方案。 Fortinet FortiEDR 存在安全漏洞,该漏洞可能允许网络上未经身份验证的攻击者伪装和伪造来自其他收集器的消息。以下产品和版本受到影响:版本 5.0.2、5.0.1、5.0.0、4.0.0。
CVSS Information
N/A
Vulnerability Type
N/A