Lucene search
K

855 matches found

CNVD
CNVD
added 2019/11/11 12:0 a.m.1 views

Fortinet FortiClient Information Disclosure Vulnerability

Fortinet FortiClient is a mobile endpoint security solution from Fortinet. The solution provides IPsec and SSL encryption, WAN optimization, endpoint compliance and two-factor authentication when connected to a FortiGate firewall appliance. An information disclosure vulnerability exists in Fortin...

5.5CVSS6.1AI score0.00195EPSS
Exploits0References1
Fortinet
Fortinet
added 2019/11/08 12:0 a.m.30 views

Console window of FortiClient for Mac OS displays password in clear-text.

A clear text storage of sensitive information vulnerability in FortiClient for Mac may allow a local attacker to read sensitive information logged in the console window when the user connects to an SSL VPN Gateway...

2.1CVSS5.1AI score0.00195EPSS
Exploits0Affected Software1
Symantec
Symantec
added 2019/11/08 12:0 a.m.34 views

Fortinet FortiClient for macOS CVE-2019-15704 Local Information Disclosure Vulnerability

Description Fortinet FortiClient for macOS is prone to a local information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information; this may lead to further attacks. Versions prior to FortiClient for macOS 6.0.8 and 6.2.1 are vulnerable. Technologies...

0.8AI score0.00195EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2019/10/31 12:0 a.m.4 views

Fortinet FortiClient Command Injection Vulnerability

Fortinet FortiClient is a mobile endpoint security solution from Fortinet. The solution provides IPsec and SSL encryption, WAN optimization, endpoint compliance and two-factor authentication when connected to a FortiGate firewall appliance. A command injection vulnerability exists in a root proce...

7.8CVSS7.6AI score0.00436EPSS
Exploits0References1
Fortinet
Fortinet
added 2019/10/29 12:0 a.m.40 views

Command injection vulnerability in FortiClient for Mac OS

An Improper Neutralization of Special Elements used in a Command vulnerability in one of FortiClient for Mac OS root processes, may allow a local user of the system on which FortiClient is running to execute unauthorized code as root by bypassing a security check...

7.2CVSS4.2AI score0.00436EPSS
Exploits0Affected Software1
Symantec
Symantec
added 2019/10/29 12:0 a.m.40 views

Fortinet FortiClient for macOS CVE-2019-17650 Local Command Injection Vulnerability

Description Fortinet FortiClient for macOS is prone to a local command-injection vulnerability. An attacker may exploit this issue to inject and execute arbitrary commands with root privileges. Versions prior to FortiClient for macOS 6.2.2 are vulnerable. Technologies Affected Fortinet FortiClien...

1.2AI score0.00436EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2019/10/24 2:15 p.m.19 views

CVE-2019-6692

A malicious DLL preload vulnerability in Fortinet FortiClient for Windows 6.2.0 and below allows a privileged attacker to perform arbitrary code execution via forging that DLL...

7.8CVSS7.8AI score0.00511EPSS
Exploits0References1
OSV
OSV
added 2019/10/24 2:15 p.m.3 views

CVE-2019-6692

A malicious DLL preload vulnerability in Fortinet FortiClient for Windows 6.2.0 and below allows a privileged attacker to perform arbitrary code execution via forging that DLL...

7.8CVSS7.6AI score0.00511EPSS
Exploits0References1
Prion
Prion
added 2019/10/24 2:15 p.m.24 views

Design/Logic Flaw

A malicious DLL preload vulnerability in Fortinet FortiClient for Windows 6.2.0 and below allows a privileged attacker to perform arbitrary code execution via forging that DLL...

4.4CVSS7.7AI score0.00511EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/10/24 1:46 p.m.19 views

CVE-2019-6692

A malicious DLL preload vulnerability in Fortinet FortiClient for Windows 6.2.0 and below allows a privileged attacker to perform arbitrary code execution via forging that DLL...

7.8AI score0.00511EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2019/10/24 1:46 p.m.10 views

CVE-2019-6692

A malicious DLL preload vulnerability in Fortinet FortiClient for Windows 6.2.0 and below allows a privileged attacker to perform arbitrary code execution via forging that DLL...

7.8AI score0.00511EPSS
Exploits0References1
CVE
CVE
added 2019/10/24 1:46 p.m.80 views

CVE-2019-6692

Fortinet FortiClient for Windows

7.8CVSS7.7AI score0.00511EPSS
Exploits0References1Affected Software1
Fortinet
Fortinet
added 2019/10/18 12:0 a.m.38 views

FortiClient Windows Service or Process Tampering

FortiClient for Windows could be subject to the following shut down or tampering attempts:...

4.4CVSS2.6AI score0.00511EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2019/09/25 12:0 a.m.2 views

Fortinet FortiClient Enterprise Management Server Cross-Site Scripting Vulnerability

Fortinet FortiClient Enterprise Management Server EMS is a FortiClient Enterprise Manager from Fortinet. It is designed for scalable and centralized management of multiple FortiClients. A cross-site scripting vulnerability exists in Fortinet FortiClient EMS 6.2.0 and earlier versions, which stems...

6.1CVSS6.4AI score0.00269EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/09/23 12:0 a.m.4 views

PT-2019-6280 · Fortinet · Forticlient Enterprise Management Server

Name of the Vulnerable Software and Affected Versions: Fortinet FortiClient Enterprise Management Server EMS affected versions not specified Description: The issue is related to the lack of protection measures for the web page structure during its creation, which can be exploited by a remote...

10CVSS5.8AI score0.00269EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2019/09/13 12:0 a.m.3 views

The vulnerability of the executable file FortiClientOnlineInstaller.exe of the Fortinet FortiClient for Windows security device allows a perpetrator to execute arbitrary code.

The vulnerability of the FortiClientOnlineInstaller.exe executable component of the Fortinet FortiClient for Windows security device is related to deficiencies in access control. Exploiting this vulnerability could allow a attacker to execute arbitrary code using a specially created DLL file...

7.8CVSS6AI score0.00511EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2019/05/30 5:29 p.m.13 views

Code injection

A local privilege escalation in Fortinet FortiClient for Windows 6.0.4 and earlier allows attackers to execute unauthorized code or commands via the named pipe responsible for Forticlient updates...

4.6CVSS8AI score0.00337EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2019/05/30 5:29 p.m.2 views

CVE-2018-9193

A researcher has disclosed several vulnerabilities against FortiClient for Windows version 6.0.5 and below, version 5.6.6, the combination of these vulnerabilities can turn into an exploit chain, which allows a user to gain system privileges on Microsoft Windows...

7.8CVSS5.6AI score0.00382EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2019/05/30 5:29 p.m.0 views

CVE-2018-13368

A local privilege escalation in Fortinet FortiClient for Windows 6.0.4 and earlier allows attacker to execute unauthorized code or commands via the command injection...

7.8CVSS6AI score
Exploits0References1
NVD
NVD
added 2019/05/30 5:29 p.m.26 views

CVE-2018-9193

A researcher has disclosed several vulnerabilities against FortiClient for Windows version 6.0.5 and below, version 5.6.6, the combination of these vulnerabilities can turn into an exploit chain, which allows a user to gain system privileges on Microsoft Windows...

7.8CVSS8AI score0.00382EPSS
Exploits0References1
Rows per page
Query Builder