An OS command injection (CWE-78) vulnerability in FortiClient for Linux may allow an unauthenticated, network-adjacent attacker to execute privileged and arbitrary commands on the Linux appliance on which FortiClient is running by tricking the user into connecting to a network with a malicious name (SSID).
CPE | Name | Operator | Version |
---|---|---|---|
forticlientlinux | eq | 6.4.2 | |
forticlientlinux | eq | 6.2.8 |