CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2020-15934
https://notcve.org/view.php?id=CVE-2020-15934
19 Dec 2024 — An execution with unnecessary privileges vulnerability in the VCM engine of FortiClient for Linux versions 6.2.7 and below, version 6.4.0. may allow local users to elevate their privileges to root by creating a malicious script or program on the target machine. • https://www.fortiguard.com/psirt/FG-IR-20-110 • CWE-269: Improper Privilege Management •
CVSS: 5.9EPSS: 0%CPEs: 32EXPL: 0CVE-2022-45856
https://notcve.org/view.php?id=CVE-2022-45856
10 Sep 2024 — An improper certificate validation vulnerability [CWE-295] in FortiClientWindows 6.4 all versions, 7.0.0 through 7.0.7, FortiClientMac 6.4 all versions, 7.0 all versions, 7.2.0 through 7.2.4, FortiClientLinux 6.4 all versions, 7.0 all versions, 7.2.0 through 7.2.4, FortiClientAndroid 6.4 all versions, 7.0 all versions, 7.2.0 and FortiClientiOS 5.6 all versions, 6.0.0 through 6.0.1, 7.0.0 through 7.0.6 SAML SSO feature may allow an unauthenticated attacker to man-in-the-middle the communication between the F... • https://fortiguard.fortinet.com/psirt/FG-IR-22-230 • CWE-295: Improper Certificate Validation •