CVE-2019-5589

An Unsafe Search Path vulnerability in FortiClient Online Installer (Windows version before 6.0.6) may allow an unauthenticated, remote attacker with control over the directory in which FortiClientOnlineInstaller.exe resides to execute arbitrary code on the system via uploading malicious .dll files in that directory.
References
Link Resource
https://fortiguard.com/advisory/FG-IR-19-060 Vendor Advisory
Configurations

Configuration 1

cpe:2.3:a:fortinet:forticlient:*:*:*:*:*:windows:*:*

Information

Published : 2019-05-28 10:29

Updated : 2019-05-29 04:07


NVD link : CVE-2019-5589

Mitre link : CVE-2019-5589

Products Affected
No products.
CWE
CWE-426

Untrusted Search Path