IR Number	FG-IR-21-190
Date	Jul 5, 2022
Severity	High
CVSSv3 Score	7.8
Impact	Escalation of privilege
CVE ID	CVE-2021-41031
Affected Products	FortiClientWindows : 7.0.2, 7.0.1, 7.0.0, 6.4.6, 6.4.5, 6.4.4, 6.4.3, 6.4.2, 6.4.1, 6.4.0, 6.2.9, 6.2.8, 6.2.7, 6.2.6, 6.2.5, 6.2.4, 6.2.3, 6.2.2, 6.2.1, 6.2.0
CVRF	Download

Refine Search

PSIRT Advisories

FortiClient (Windows) - Privilege Escalation via directory traversal attack

Summary

A relative path traversal vulnerability [CWE-23] in FortiClient for Windows may allow a local unprivileged attacker to escalate their privileges to SYSTEM via the named pipe responsible for FortiESNAC service.

Affected Products

FortiClientWindows version 7.0.0 through 7.0.2
FortiClientWindows version 6.4.0 through 6.4.6
FortiClientWindows version 6.2.0 through 6.2.9

Solutions

Please upgrade to FortiClientWindows version 7.0.3 or above
Please upgrade to FortiClientWindows version 6.4.7 or above

Acknowledgement

Fortinet is pleased to thank Daniel Hulliger of Armasuisse - CYD Campus for reporting this vulnerability under responsible disclosure

Network

Content and Endpoint

Application

Response

FortiNDR

FortiSandbox

FortiTester

PSIRT Advisories