CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

CVE-2023-6905

CVE-2023-6903

CVE-2023-6904

CVE-2023-3907

A improper control of a resource through its lifetime in Fortinet FortiClientWindows version 6.4.1 and 6.4.0, version 6.2.9 and below, version 6.0.10 and below allows attacker to cause a complete denial of service of its components via changes of directory access permissions.

**![](https://fortiguard.com/static/images/icons/psirt.svg?v=4940) PSIRT Advisories**

**FortiClient (Windows) - Denial of service due to folder access permission change**

**Summary**

An improper control of a resource through its lifetime \[CWE-664\] vulnerability in FortiClient (Windows) may allow a privileged attacker to make the whole application unresponsive via changing its root directory access permission.

**Affected Products**

FortiClient (Windows) version 6.0.10 and below  
FortiClient (Windows) version 6.2.9 and below  
FortiClient (Windows) version 6.4.1 and 6.4.0

**Solutions**

Upgrade to FortiClient (Windows) version 6.4.2 or above.

Upgrade to FortiClient (Windows) version 7.0.0 or above.

**Acknowledgement**

Fortinet is pleased to thank Mike de Almeida for reporting this vulnerability under responsible disclosure

Headline

CVE-2021-43204: Fortiguard

CVE: Latest News