Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:58 a.m.20 views

CVE-2023-45588

An external control of file name or path vulnerability CWE-73 in FortiClientMac version 7.2.3 and below, version 7.0.10 and below installer may allow a local attacker to execute arbitrary code or commands via writing a malicious configuration file in /tmp before starting the installation process...

8.2CVSS8.1AI score0.00262EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-26769

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00121EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-49880

Malicious code in bioql PyPI...

8.2CVSS6.6AI score0.00262EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:45 a.m.5 views

CVE-2023-22635

A download of code without Integrity check vulnerability CWE-494 in FortiClientMac version 7.0.0 through 7.0.7, 6.4 all versions, 6.2 all versions, 6.0 all versions, 5.6 all versions, 5.4 all versions, 5.2 all versions, 5.0 all versions and 4.0 all versions may allow a local attacker to escalate...

7.8CVSS7AI score0.00121EPSS
Exploits0References1
NVD
NVD
added 2025/05/13 3:15 p.m.9 views

CVE-2024-35281

An improper isolation or compartmentalization vulnerability CWE-653 in FortiClientMac version 7.4.2 and below, version 7.2.8 and below, 7.0 all versions and FortiVoiceUCDesktop 3.0 all versions desktop application may allow an authenticated attacker to inject code via Electron environment variabl...

7.8CVSS0.00119EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/13 2:46 p.m.7 views

CVE-2024-35281

An improper isolation or compartmentalization vulnerability CWE-653 in FortiClientMac version 7.4.2 and below, version 7.2.8 and below, 7.0 all versions and FortiVoiceUCDesktop 3.0 all versions desktop application may allow an authenticated attacker to inject code via Electron environment variabl...

2.5CVSS7.1AI score0.00119EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/13 2:46 p.m.16 views

CVE-2024-35281

An improper isolation or compartmentalization vulnerability CWE-653 in FortiClientMac version 7.4.2 and below, version 7.2.8 and below, 7.0 all versions and FortiVoiceUCDesktop 3.0 all versions desktop application may allow an authenticated attacker to inject code via Electron environment variabl...

2.5CVSS0.00119EPSS
Exploits0References1
NVD
NVD
added 2025/03/14 4:15 p.m.11 views

CVE-2023-45588

An external control of file name or path vulnerability CWE-73 in FortiClientMac version 7.2.3 and below, version 7.0.10 and below installer may allow a local attacker to execute arbitrary code or commands via writing a malicious configuration file in /tmp before starting the installation process...

8.2CVSS0.00262EPSS
Exploits0References1
CVE
CVE
added 2025/03/14 3:46 p.m.53 views

CVE-2023-45588

CVE-2023-45588 is a local, external-control-of-file-name-or-path vulnerability (CWE-73) in FortiClientMac. Affected: FortiClientMac versions 7.2.3 and below, and the 7.0.10 and below installer. Summary: a local attacker could write a malicious configuration file in /tmp before installation to exe...

8.2CVSS8.4AI score0.00262EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/03/14 3:46 p.m.9 views

CVE-2023-45588

An external control of file name or path vulnerability CWE-73 in FortiClientMac version 7.2.3 and below, version 7.0.10 and below installer may allow a local attacker to execute arbitrary code or commands via writing a malicious configuration file in /tmp before starting the installation process...

8.2CVSS0.00262EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/14 3:46 p.m.11 views

CVE-2023-45588

An external control of file name or path vulnerability CWE-73 in FortiClientMac version 7.2.3 and below, version 7.0.10 and below installer may allow a local attacker to execute arbitrary code or commands via writing a malicious configuration file in /tmp before starting the installation process...

8.2CVSS8.4AI score0.00262EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/09 12:0 a.m.4 views

PT-2024-13254 · Fortinet · Forticlientmac

Name of the Vulnerable Software and Affected Versions: FortiClientMac versions 7.2.3 and below FortiClientMac version 7.0.10 and below installer Description: The issue allows a local attacker to execute arbitrary code or commands via writing a malicious configuration file in /tmp before starting...

8.2CVSS7.4AI score0.00262EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2023/04/11 12:0 a.m.5 views

PT-2023-7226 · Fortinet · Forticlientmac

Name of the Vulnerable Software and Affected Versions: FortiClientMac versions 4.0 through 7.0.7 Description: The issue is related to a download of code without integrity check, which may allow a local attacker to escalate their privileges by modifying the installer upon upgrade. Recommendations:...

7.8CVSS7.8AI score0.00121EPSS
Exploits0References4
Rows per page
Query Builder