CVE-2021-22127

An improper input validation vulnerability in FortiClient for Linux 6.4.x before 6.4.3, FortiClient for Linux 6.2.x before 6.2.9 may allow an unauthenticated attacker to execute arbitrary code on the host operating system as root via tricking the user into connecting to a network with a malicious...

EUVD-2020-7905

Malware in sbrugna...

EUVD-2021-9283

Malicious code in bioql PyPI...

CVE-2020-15934

An execution with unnecessary privileges vulnerability in the VCM engine of FortiClient for Linux versions 6.2.7 and below, version 6.4.0. may allow local users to elevate their privileges to root by creating a malicious script or program on the target machine...

CVE-2020-15934

An execution with unnecessary privileges vulnerability in the VCM engine of FortiClient for Linux versions 6.2.7 and below, version 6.4.0. may allow local users to elevate their privileges to root by creating a malicious script or program on the target machine...

VulnCheck KEV: CVE-2024-50570

A Cleartext Storage of Sensitive Information vulnerability CWE-312 in FortiClientWindows 7.4.0 through 7.4.1, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13 and FortiClientLinux 7.4.0 through 7.4.2, 7.2.0 through 7.2.7, 7.0.0 through 7.0.13 may permit a local authenticated user to retrieve VPN...

CVE-2024-31489

AAn improper certificate validation vulnerability CWE-295 in FortiClientWindows 7.2.0 through 7.2.2, 7.0.0 through 7.0.11, FortiClientLinux 7.2.0, 7.0.0 through 7.0.11 and FortiClientMac 7.0.0 through 7.0.11, 7.2.0 through 7.2.4 may allow a remote and unauthenticated attacker to perform a...

PT-2024-9823 · Fortinet · Forticlientmac +3

Name of the Vulnerable Software and Affected Versions: FortiClientWindows versions 7.0.0 through 7.0.11, 7.2.0 through 7.2.2 FortiClientLinux versions 7.0.0 through 7.0.11, 7.2.0 FortiClientMac versions 7.0.0 through 7.0.11, 7.2.0 through 7.2.4 Description: The issue is related to an improper...

PT-2024-9819 · Fortinet · Forticlientwindows +4

Name of the Vulnerable Software and Affected Versions: FortiClientWindows versions 6.4 through 7.0.7 FortiClientMac versions 6.4 through 7.2.4 FortiClientLinux versions 6.4 through 7.2.4 FortiClientAndroid versions 6.4 through 7.2.0 FortiClientiOS versions 5.6 through 7.0.6 Description: The issue...

The vulnerability of the Fortinet FortiClient security device for Linux, related to improper code generation management, allows a hacker to execute arbitrary code.

The vulnerability of Fortinet’s FortiClient security device for Linux is related to improper code generation. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely, provided that the user visits a specially crafted malicious website...

The vulnerability of the nanomsg socket library in the Fortinet FortiClient for Linux security tool allows a hacker to cause a service failure.

The vulnerability of the nanomsg socket library in the Fortinet FortiClient for Linux security solution is related to writing beyond the buffer boundaries during the processing of the argv array. Exploiting this vulnerability can allow an attacker to cause a service failure by sending specially...

The vulnerability of the nanomsg library in the Fortinet FortiClient security solution for Linux allows a hacker to trigger a service failure.

The vulnerability of the nanomsg library in the Fortinet FortiClient security solution for Linux is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending specially crafted IPC requests...

Fortinet FortiClient 信任管理问题漏洞

Fortinet FortiClient is a mobile endpoint security solution from Fortinet. The solution provides IPsec and SSL encryption, WAN optimization, endpoint compliance, and two-factor authentication when connected to a FortiGate firewall appliance. A trust management issue vulnerability exists in Fortin...

CVE-2021-44167

An incorrect permission assignment for critical resource vulnerability CWE-732 in FortiClient for Linux version 6.0.8 and below, 6.2.9 and below, 6.4.7 and below, 7.0.2 and below may allow an unauthenticated attacker to access sensitive information in log files and directories via symbolic links...

CVE-2021-22127

An improper input validation vulnerability in FortiClient for Linux 6.4.x before 6.4.3, FortiClient for Linux 6.2.x before 6.2.9 may allow an unauthenticated attacker to execute arbitrary code on the host operating system as root via tricking the user into connecting to a network with a malicious...

CVE-2021-41028

A combination of a use of hard-coded cryptographic key vulnerability CWE-321 in FortiClientEMS 7.0.1 and below, 6.4.6 and below and an improper certificate validation vulnerability CWE-297 in FortiClientWindows, FortiClientLinux and FortiClientMac 7.0.1 and below, 6.4.6 and below may allow an...

Fortinet FortiClient Elevation of Privilege Vulnerability (CNVD-2020-61068)

Fortinet FortiClient is a mobile endpoint security solution from Fortinet. The solution provides IPsec and SSL encryption, WAN optimization, endpoint compliance and two-factor authentication when connected to a FortiGate firewall appliance. FortiClient Linux has a security vulnerability that can ...

Vulnerability fixed in FortiClient

A vulnerability has been fixed in FortiClient for Linux. The vulnerability enables a local malicious person who has the ability has the ability to run scripts or programs on the system is able to able to obtain elevated privileges. FortiNet has released updates to fix the vulnerability. More...

PT-2020-7002 · Fortinet · Forticlient For Linux

Name of the Vulnerable Software and Affected Versions: FortiClient for Linux versions 6.2.7 and below, version 6.4.0 Description: The issue is related to insecure privilege management in the VCM engine of FortiClient for Linux. Exploitation of this issue may allow a remote attacker to elevate the...

CVE-2019-16155

A privilege escalation vulnerability in FortiClient for Linux 6.2.1 and below may allow a user with low privilege to overwrite system files as root with arbitrary content through system backup file via specially crafted "BackupConfig" type IPC client requests to the fctsched process. Further more...