Privilege Escalation Vulnerability in FortiClient by Fortinet
CVE-2022-26113
7.7HIGH
Summary
A privilege escalation vulnerability exists in FortiClient for Windows versions ranging from 6.0.0 to 7.0.3. This flaw allows a local attacker to gain elevated privileges and perform arbitrary file write operations on the system. Exploiting this vulnerability could lead to unauthorized modifications to sensitive files, thereby compromising system integrity. It is crucial for users of affected versions to apply security updates promptly to mitigate potential risks.
Affected Version(s)
Fortinet FortiClientWindows FortiClientWindows 7.0.0 through 7.0.3, 6.4.0 through 6.4.7, 6.2.0 through 6.2.9, 6.0.0 through 6.0.10
References
CVSS V3.1
Score:
7.7
Severity:
HIGH
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved