CVE-2015-5737

high Fortinet
CVSS v3 Base Score
7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS Score
0.1%
Exploitation probability in 30 days
Top 81% most likely to be exploited
Attack Characteristics
Attack Vector
Local
Attack Complexity
Low
Confidentiality
C
Integrity
C
Availability
C
Published: September 3, 2015 (3905 days ago)
Last Modified: May 6, 2026
Vendor: Fortinet
Source: NVD

Description

The (1) mdare64_48.sys, (2) mdare32_48.sys, (3) mdare32_52.sys, (4) mdare64_52.sys, and (5) Fortishield.sys drivers in Fortinet FortiClient before 5.2.4 do not properly restrict access to the API for management of processes and the Windows registry, which allows local users to obtain a privileged handle to a PID and possibly have unspecified other impact, as demonstrated by a 0x2220c8 ioctl call.

CWE

CWE-264

Affected Products

fortinet forticlient

References

🔗 fortiguard.com 🔗 packetstormsecurity.com 🔗 seclists.org 🔗 www.coresecurity.com 🔗 www.fortiguard.com