CVE-2021-26089
published 2021-07-12CVE-2021-26089: An improper symlink following in FortiClient for Mac 6.4.3 and below may allow an non-privileged user to execute arbitrary privileged shell commands during…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
An improper symlink following in FortiClient for Mac 6.4.3 and below may allow an non-privileged user to execute arbitrary privileged shell commands during installation phase.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | forticlient | <= 6.4.3 | — |
| fortinet | forticlient | — | — |
| fortinet | fortinet_forticlientmac | — | — |