Unrated severityNVD Advisory· Published Apr 6, 2022· Updated Oct 25, 2024
CVE-2021-22127
CVE-2021-22127
Description
An improper input validation vulnerability in FortiClient for Linux 6.4.x before 6.4.3, FortiClient for Linux 6.2.x before 6.2.9 may allow an unauthenticated attacker to execute arbitrary code on the host operating system as root via tricking the user into connecting to a network with a malicious name.
Affected products
2<6.2.9,<6.4.3+ 1 more
- (no CPE)range: <6.2.9,<6.4.3
- (no CPE)range: FortiClientLinux 6.4.2 and below, FortiClientLinux 6.2.8 and below
Patches
Vulnerability mechanics
References
1- fortiguard.com/advisory/FG-IR-20-241mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.