CVE-2016-8493Fortinet Forticlient vulnerability

CWE-2644 documents4 sources
Severity
8.8HIGHNVD
EPSS
0.6%
top 30.77%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Fortinet ForticlientFortinet Forticlient
Timeline
PublishedJun 26
Latest updateMay 14

Description

In FortiClientWindows 5.4.1 and 5.4.2, an attacker may escalate privilege via a FortiClientNamedPipe vulnerability.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

NVDfortinet/forticlient5.4.1, 5.4.2+1
CVEListV5fortinet/fortinet_forticlientFortiClient 5.4.2, 5.4.1

🔴Vulnerability Details

2
GHSA
GHSA-q8g7-5r5g-85xm: In FortiClientWindows 52022-05-14
CVEList
CVE-2016-8493: In FortiClientWindows 52017-06-26

📋Vendor Advisories

1
Fortinet
In FortiClientWindows 5.4.1 and 5.4.2, an attacker may escalate privilege via a FortiClientNamedPipe vulnerability2017-06-26
CVE-2016-8493 — Fortinet Forticlient vulnerability | cvebase