cvelist/2017/7xxx/CVE-2017-7344.json

{
    "CVE_data_meta": {
        "ASSIGNER": "psirt@fortinet.com",
        "DATE_PUBLIC": "2017-12-12T00:00:00",
        "ID": "CVE-2017-7344",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "FortiClientWindows",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "5.6.0, 5.4.3, 5.4.2, 5.4.1, 5.4.0"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "Fortinet, Inc."
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "A privilege escalation in Fortinet FortiClient Windows 5.4.3 and earlier as well as 5.6.0 allows attacker to gain privilege via exploiting the Windows \"security alert\" dialog thereby popping up when the \"VPN before logon\" feature is enabled and an untrusted certificate chain."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Escalation of privilege"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://securite.intrinsec.com/2017/12/22/cve-2017-7344-fortinet-forticlient-windows-privilege-escalation-at-logon/",
                "refsource": "MISC",
                "url": "https://securite.intrinsec.com/2017/12/22/cve-2017-7344-fortinet-forticlient-windows-privilege-escalation-at-logon/"
            },
            {
                "name": "102176",
                "refsource": "BID",
                "url": "http://www.securityfocus.com/bid/102176"
            },
            {
                "name": "https://fortiguard.com/advisory/FG-IR-17-070",
                "refsource": "CONFIRM",
                "url": "https://fortiguard.com/advisory/FG-IR-17-070"
            }
        ]
    }
}
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`{`
"-Synchronized-Data." 2019-03-18 02:08:41 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "psirt@fortinet.com",`
			`"DATE_PUBLIC": "2017-12-12T00:00:00",`
			`"ID": "CVE-2017-7344",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "FortiClientWindows",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "5.6.0, 5.4.3, 5.4.2, 5.4.1, 5.4.0"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "Fortinet, Inc."`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
- Added submission from Fortinet for FG-IR-17-070 from 2017-12-14. 2017-12-14 12:09:47 -05:00			`{`
"-Synchronized-Data." 2019-03-18 02:08:41 +00:00			`"lang": "eng",`
			`"value": "A privilege escalation in Fortinet FortiClient Windows 5.4.3 and earlier as well as 5.6.0 allows attacker to gain privilege via exploiting the Windows \"security alert\" dialog thereby popping up when the \"VPN before logon\" feature is enabled and an untrusted certificate chain."`
- Added submission from Fortinet for FG-IR-17-070 from 2017-12-14. 2017-12-14 12:09:47 -05:00			`}`
"-Synchronized-Data." 2019-03-18 02:08:41 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Escalation of privilege"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "https://securite.intrinsec.com/2017/12/22/cve-2017-7344-fortinet-forticlient-windows-privilege-escalation-at-logon/",`
			`"refsource": "MISC",`
			`"url": "https://securite.intrinsec.com/2017/12/22/cve-2017-7344-fortinet-forticlient-windows-privilege-escalation-at-logon/"`
			`},`
			`{`
			`"name": "102176",`
			`"refsource": "BID",`
			`"url": "http://www.securityfocus.com/bid/102176"`
			`},`
			`{`
			`"name": "https://fortiguard.com/advisory/FG-IR-17-070",`
			`"refsource": "CONFIRM",`
			`"url": "https://fortiguard.com/advisory/FG-IR-17-070"`
			`}`
			`]`
			`}`
			`}`