Fortinet

FortiClient

81 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2019-15704

  • EPSS 0.03%
  • Veröffentlicht 21.11.2019 15:15:13
  • Zuletzt bearbeitet 21.11.2024 04:29:17

A clear text storage of sensitive information vulnerability in FortiClient for Mac may allow a local attacker to read sensitive information logged in the console window when the user connects to an SSL VPN Gateway.

5.9

CVE-2018-9195

  • EPSS 0.3%
  • Veröffentlicht 21.11.2019 15:15:12
  • Zuletzt bearbeitet 21.11.2024 04:15:09

Use of a hardcoded cryptographic key in the FortiGuard services communication protocol may allow a Man in the middle with knowledge of the key to eavesdrop on and modify information (URL/SPAM services in FortiOS 5.6, and URL/SPAM/AV services in Forti...

7.8

CVE-2019-6692

  • EPSS 0.14%
  • Veröffentlicht 24.10.2019 14:15:11
  • Zuletzt bearbeitet 21.11.2024 04:46:58

A malicious DLL preload vulnerability in Fortinet FortiClient for Windows 6.2.0 and below allows a privileged attacker to perform arbitrary code execution via forging that DLL.

7.8

CVE-2018-9193

  • EPSS 0.03%
  • Veröffentlicht 30.05.2019 17:29:00
  • Zuletzt bearbeitet 24.03.2025 16:15:15

A researcher has disclosed several vulnerabilities against FortiClient for Windows version 6.0.5 and below, version 5.6.6, the combination of these vulnerabilities can turn into an exploit chain, which allows a user to gain system privileges on Micro...

7.8

CVE-2018-9191

  • EPSS 0.05%
  • Veröffentlicht 30.05.2019 17:29:00
  • Zuletzt bearbeitet 21.11.2024 04:15:08

A local privilege escalation in Fortinet FortiClient for Windows 6.0.4 and earlier allows attackers to execute unauthorized code or commands via the named pipe responsible for Forticlient updates.

7.8

CVE-2018-13368

  • EPSS 0.11%
  • Veröffentlicht 30.05.2019 17:29:00
  • Zuletzt bearbeitet 21.11.2024 03:46:58

A local privilege escalation in Fortinet FortiClient for Windows 6.0.4 and earlier allows attacker to execute unauthorized code or commands via the command injection.

9.3

CVE-2019-5589

  • EPSS 0.62%
  • Veröffentlicht 28.05.2019 22:29:00
  • Zuletzt bearbeitet 21.11.2024 04:45:11

An Unsafe Search Path vulnerability in FortiClient Online Installer (Windows version before 6.0.6) may allow an unauthenticated, remote attacker with control over the directory in which FortiClientOnlineInstaller.exe resides to execute arbitrary code...

5.5

CVE-2018-9190

  • EPSS 0.15%
  • Veröffentlicht 08.02.2019 19:29:00
  • Zuletzt bearbeitet 21.11.2024 04:15:08

A null pointer dereference vulnerability in Fortinet FortiClientWindows 6.0.2 and earlier allows attacker to cause a denial of service via the NDIS miniport driver.

7.5

CVE-2017-17543

  • EPSS 0.07%
  • Veröffentlicht 26.04.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:18:08

Users' VPN authentication credentials are unsafely encrypted in Fortinet FortiClient for Windows 5.6.0 and below versions, FortiClient for Mac OSX 5.6.0 and below versions and FortiClient SSLVPN Client for Linux 4.4.2335 and below versions, due to th...

8.8

CVE-2017-14184

  • EPSS 1.65%
  • Veröffentlicht 15.12.2017 21:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

An Information Disclosure vulnerability in Fortinet FortiClient for Windows 5.6.0 and below versions, FortiClient for Mac OSX 5.6.0 and below versions and FortiClient SSLVPN Client for Linux 4.4.2334 and below versions allows regular users to see eac...