Vulnerabilities > CVE-2024-31492 - Unspecified vulnerability in Fortinet Forticlient
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
An external control of file name or path vulnerability [CWE-73] in FortiClientMac version 7.2.3 and below, version 7.0.10 and below installer may allow a local attacker to execute arbitrary code or commands via writing a malicious configuration file in /tmp before starting the installation process.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 7 |