Low-privilege attacker can execute arbitrary code with high privileges via spoofed named pipe messages
CVE-2024-47574
7.8HIGH
What is CVE-2024-47574?
An authentication bypass vulnerability in Fortinet's FortiClient allows low-privilege attackers to execute arbitrary code by exploiting a weakness in the named pipe messaging system. This flaw affects multiple versions, providing avenues for potential unauthorized access and execution of malicious actions. Organizations using the impacted versions are advised to apply updates to safeguard against exploitation.