VYPR
Unrated severityNVD Advisory· Published Feb 6, 2020· Updated Oct 25, 2024

CVE-2019-17652

CVE-2019-17652

Description

A stack buffer overflow vulnerability in FortiClient for Linux 6.2.1 and below may allow a user with low privilege to cause FortiClient processes running under root priviledge crashes via sending specially crafted "StartAvCustomScan" type IPC client requests to the fctsched process due the argv data not been well sanitized.

Affected products

2
  • Fortinet/Forticlientllm-fuzzy2 versions
    <=6.2.1+ 1 more
    • (no CPE)range: <=6.2.1
    • (no CPE)range: FortiClientLinux 6.2.1 and below

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.

CVE-2019-17652 · VYPR