7.2.1

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

fortinet

NVD

Published: 2023-11-14

Updated: 2024-11-21

Summary

A untrusted search path vulnerability in Fortinet FortiClientWindows 7.0.9 allows an attacker to perform a DLL Hijack attack via a malicious OpenSSL engine library in the search path.

Vulnerable Configurations

Part	Description	Count
Application	Fortinet Fortinet Forticlient 7.2.0 Fortinet Forticlient 7.2.1 Fortinet Forticlient 7.0.9	3

References

https://fortiguard.com/psirt/FG-IR-23-274
https://fortiguard.com/psirt/FG-IR-23-274