CVE-2019-17650

Summary

An Improper Neutralization of Special Elements used in a Command vulnerability in one of FortiClient for Mac OS root processes, may allow a local user of the system on which FortiClient is running to execute unauthorized code as root by bypassing a security check.

Affected Software

VendorProductVersion RangeStatus
FortinetFortiClient for Mac OSFortiClient for Mac OS 6.2.1affected

Weaknesses

  • Unauthorized code execution

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References