The latest build of FortiClient EMS ships apache version 2.4.54, which
is vulnerable to CVE-2023-25690 and others.Is there a planned fix, or is
it possible to upgrade apache independently to the rest of the
application?Thanks.
I noticed today that the Forticlient installs on my endpoints are out of
date, still only running 7.0.1. I checked the EMS and saw that the
installer/deployment was still that version. I cannot select a higher
patch number for a new installation, or ...
Thanks for the help srajeswaran. The issue was on 7.2.0, apologies for
not being specific. There was no 7.2.1 at the time; looks like it was
released on the day I asked the question.
I have now realized that the EMS itself is out of date, and that is the
reason I can't choose more recent installers. It appears not to support
automatic updates. Is that correct?