Unrated severityNVD Advisory· Published Feb 6, 2020· Updated Oct 25, 2024
CVE-2019-17652
CVE-2019-17652
Description
A stack buffer overflow vulnerability in FortiClient for Linux 6.2.1 and below may allow a user with low privilege to cause FortiClient processes running under root priviledge crashes via sending specially crafted "StartAvCustomScan" type IPC client requests to the fctsched process due the argv data not been well sanitized.
Affected products
2<=6.2.1+ 1 more
- (no CPE)range: <=6.2.1
- (no CPE)range: FortiClientLinux 6.2.1 and below
Patches
Vulnerability mechanics
References
2- danishcyberdefence.dk/blog/forticlient_linuxmitrex_refsource_MISC
- fortiguard.com/psirt/FG-IR-19-238mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.