EUVD-2021-30019

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

External control flaw in Fortinet FortiClient allows privilege escalation via MSI installer.

Reporter	Title	Published	Views	Family All 10
BDU FSTEC	The vulnerability of the FortiClient.msi installer of the Fortinet FortiClient for Windows security solution allows a malicious individual to escalate their privileges.	12 Dec 202200:00	–	bdu_fstec
Circl	CVE-2021-43066	11 May 202220:34	–	circl
CNNVD	Fortinet FortiClient 安全漏洞	3 May 202200:00	–	cnnvd
CVE	CVE-2021-43066	11 May 202215:40	–	cve
Cvelist	CVE-2021-43066	11 May 202215:40	–	cvelist
Fortinet	FortiClient - Privilege escalation in FortiClient installer	3 May 202200:00	–	fortinet
NCSC	Vulnerability fixed in FortiClient	4 May 202200:00	–	ncsc
NVD	CVE-2021-43066	11 May 202216:15	–	nvd
Prion	Xxe	11 May 202216:15	–	prion
Vulnrichment	CVE-2021-43066	11 May 202215:40	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "765aa0a5-8820-3b12-a7d8-7a012cbfd5ee",
        "vendor": {
          "name": "Fortinet"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "6edd64ee-cc71-3e4a-b322-0d18550799eb",
        "product": {
          "name": "Fortinet FortiClientWindows"
        },
        "product_version": "FortiClientWindows 7.0.2 7.0.1, 7.0.0, 6.4.6, 6.4.5, 6.4.4, 6.4.3, 6.4.2, 6.4.1, 6.4.0, 6.2.9, 6.2.8, 6.2.7, 6.2.6, 6.2.5, 6.2.4, 6.2.3, 6.2.2, 6.2.1, 6.2.0, 6.0.10, 6.0.9, 6.0.8, 6.0.7, 6.0.6, 6.0.5, 6.0.4, 6.0.3, 6.0.2, 6.0.1, 6.0.0"
      }
    ]
  }
]

Source	Link
fortiguard	www.fortiguard.com/advisory/FG-IR-21-154

03 Oct 2025 20:07Current

7.7High risk

Vulners AI Score7.7

CVSS 3.17.8 - 8.4

CVSS 24.6

EPSS0.00058

SSVC