VYPR
Unrated severityNVD Advisory· Published Mar 15, 2020· Updated Oct 25, 2024

CVE-2020-9287

CVE-2020-9287

Description

An Unsafe Search Path vulnerability in FortiClient EMS online installer 6.2.1 and below may allow a local attacker with control over the directory in which FortiClientEMSOnlineInstaller.exe resides to execute arbitrary code on the system via uploading malicious Filter Library DLL files in that directory.

Affected products

2
  • Fortinet/Forticlientllm-fuzzy2 versions
    <=6.2.1+ 1 more
    • (no CPE)range: <=6.2.1
    • (no CPE)range: 6.2.1 and below

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.