We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2021-41022



Assignerfortinet
Reserved2021-09-13
Published2021-11-02
Updated2024-10-25

Description

A improper privilege management in Fortinet FortiSIEM Windows Agent version 4.1.4 and below allows attacker to execute privileged code or commands via powershell scripts



HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:X/RL:O/RC:C

Product status

FortiSIEMWindowsAgent 4.1.4, 4.1.3, 4.1.2, 4.1.1, 4.1.0, 4.0.0, 3.3.0, 3.2.2, 3.2.1, 3.2.0, 3.1.2, 3.1.0
affected

References

https://fortiguard.com/advisory/FG-IR-21-176

cve.org CVE-2021-41022

nvd.nist.gov CVE-2021-41022

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2021-41022
Subscribe to our newsletter to learn more about our work.