Elevated Privileges Vulnerability in FortiClient FortiTray Component

CVE-2019-17658 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An unquoted service path vulnerability in the FortiClient FortiTray component of FortiClientWindows v6.2.2 and prior allow an attacker to gain elevated privileges via the FortiClientConsole executable service path.

Learn more about our Web Application Penetration Testing UK.