An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiClient for Windows 7.2.0, 7.0 all versions, 6.4 all versions, 6.2 all versions, Linux 7.2.0, 7.0 all versions, 6.4 all versions, 6.2 all versions and Mac 7.2.0 through 7.2.1, 7.0 all versions, 6.4 all versions, 6.2 all versions, may allow a local authenticated attacker with no Administrative privileges to retrieve the list of files or folders excluded from malware scanning.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/psirt/FG-IR-22-235 |
History
Wed, 18 Sep 2024 21:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2023-10-10T16:50:04.463Z
Updated: 2024-09-18T20:26:45.399Z
Reserved: 2023-07-11T08:16:54.093Z
Link: CVE-2023-37939
Vulnrichment
Updated: 2024-08-02T17:23:27.759Z
NVD
Status : Modified
Published: 2023-10-10T17:15:12.333
Modified: 2024-11-21T08:12:30.200
Link: CVE-2023-37939
Redhat
No data.