CVE-2026-24018

Summary

A UNIX symbolic link (Symlink) following vulnerability in Fortinet FortiClientLinux 7.4.0 through 7.4.4, FortiClientLinux 7.2.2 through 7.2.12 may allow a local and unprivileged user to escalate their privileges to root.

Affected Software

VendorProductVersion RangeStatus
FortinetFortiClientLinux7.4.0 <= 7.4.4affected
FortinetFortiClientLinux7.2.2 <= 7.2.12affected

Weaknesses

  • CWE-61: Escalation of privilege

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References