An Unsafe Search Path vulnerability in FortiClient EMS online installer 6.2.1 and below may allow a local attacker with control over the directory in which FortiClientEMSOnlineInstaller.exe resides to execute arbitrary code on the system via uploading malicious Filter Library DLL files in that directory.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/psirt/FG-IR-19-060 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2020-03-15T21:56:00
Updated: 2024-08-04T10:26:15.978Z
Reserved: 2020-02-19T00:00:00
Link: CVE-2020-9287
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-03-15T22:15:15.020
Modified: 2020-03-17T19:41:19.107
Link: CVE-2020-9287
Redhat
No data.