Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-15934

An execution with unnecessary privileges vulnerability in the VCM engine of FortiClient for Linux versions 6.2.7 and below, version 6.4.0. may allow local users to elevate their privileges to root by creating a malicious script or program on the target machine.

Published

2024-12-19T11:15:06.930

Last Modified

2025-01-21T20:38:47.137

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

Weaknesses

Type: Primary
CWE-269

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	fortinet	forticlient	< 6.2.8	Yes
Application	fortinet	forticlient	6.4.0	Yes

References

https://www.fortiguard.com/psirt/FG-IR-20-110 Vendor Advisory ([email protected])