← Zuruck zu CVEs
CVE-2019-15711
HIGH7.8
Beschreibung
A privilege escalation vulnerability in FortiClient for Linux 6.2.1 and below may allow an user with low privilege to run system commands under root privilege via injecting specially crafted "ExportLogs" type IPC client requests to the fctsched process.
CVE Details
CVSS v3.1 Bewertung7.8
SchweregradHIGH
CVSS VektorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AngriffsvektorLOCAL
KomplexitatLOW
Erforderliche PrivilegienLOW
BenutzerinteraktionNONE
Veroffentlicht2/6/2020
Zuletzt geandert11/21/2024
Quellenvd
Honeypot-Sichtungen0
Betroffene Produkte
fortinet:forticlient
Referenzen
https://danishcyberdefence.dk/blog/forticlient_linux(psirt@fortinet.com)
https://fortiguard.com/psirt/FG-IR-19-238(psirt@fortinet.com)
https://danishcyberdefence.dk/blog/forticlient_linux(af854a3a-2127-422b-91ae-364da2661108)
https://fortiguard.com/psirt/FG-IR-19-238(af854a3a-2127-422b-91ae-364da2661108)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.