Lucene search

K

5 matches found

CVE
CVE
added 2019/05/28 10:29 p.m.113 views

CVE-2019-5589

An Unsafe Search Path vulnerability in FortiClient Online Installer (Windows version before 6.0.6) may allow an unauthenticated, remote attacker with control over the directory in which FortiClientOnlineInstaller.exe resides to execute arbitrary code on the system via uploading malicious .dll files...

9.3CVSS7.9AI score0.0062EPSS
CVE
CVE
added 2022/04/06 4:15 p.m.80 views

CVE-2021-22127

An improper input validation vulnerability in FortiClient for Linux 6.4.x before 6.4.3, FortiClient for Linux 6.2.x before 6.2.9 may allow an unauthenticated attacker to execute arbitrary code on the host operating system as root via tricking the user into connecting to a network with a malicious n...

8CVSS8.1AI score0.00311EPSS
CVE
CVE
added 2017/12/15 9:29 p.m.60 views

CVE-2017-14184

An Information Disclosure vulnerability in Fortinet FortiClient for Windows 5.6.0 and below versions, FortiClient for Mac OSX 5.6.0 and below versions and FortiClient SSLVPN Client for Linux 4.4.2334 and below versions allows regular users to see each other's VPN authentication credentials due to i...

8.8CVSS8.5AI score0.00448EPSS
CVE
CVE
added 2020/06/04 1:15 p.m.47 views

CVE-2019-16150

Use of a hard-coded cryptographic key to encrypt security sensitive data in local storage and configuration in FortiClient for Windows prior to 6.4.0 may allow an attacker with access to the local storage or the configuration backup file to decrypt the sensitive data via knowledge of the hard-coded...

5.5CVSS5.4AI score0.00214EPSS
CVE
CVE
added 2016/01/08 7:59 p.m.34 views

CVE-2015-7362

Fortinet FortiClient Linux SSLVPN before build 2313, when installed on Linux in a home directory that is world readable and executable, allows local users to gain privileges via the helper/subroc setuid program.

7.8CVSS7.6AI score0.00039EPSS