Improper Authorization Vulnerability in FortiClient for Windows by Fortinet
CVE-2021-36183
7.4HIGH
What is CVE-2021-36183?
An improper authorization vulnerability exists in FortiClient for Windows that may enable a local, unprivileged attacker to escalate their privileges to SYSTEM. This vulnerability arises from insufficient access controls on the named pipe responsible for FortiClient updates, potentially allowing exploits that compromise system integrity.
Affected Version(s)
Fortinet FortiClientWindows FortiClientWindows 7.0.1, 7.0.0, 6.4.2, 6.4.1, 6.4.0