CVE-2021-42754
published 2021-11-02CVE-2021-42754: An improper control of generation of code vulnerability [CWE-94] in FortiClientMacOS versions 7.0.0 and below and 6.4.5 and below may allow an authenticated…
medium5CVSS 3.1
AVLACLPRLUIRSUCNIHAN
An improper control of generation of code vulnerability [CWE-94] in FortiClientMacOS versions 7.0.0 and below and 6.4.5 and below may allow an authenticated attacker to hijack the MacOS camera without the user permission via the malicious dylib file.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | forticlient | — | — |
| fortinet | forticlient | — | — |
| fortinet | forticlient | 6.4.0 – 6.4.5 | — |
| fortinet | forticlientmacos | — | — |
| fortinet | fortinet_forticlientmac | — | — |