An Unsafe Search Path vulnerability in FortiClient EMS online installer 6.2.1 and below may allow a local attacker with control over the directory in which FortiClientEMSOnlineInstaller.exe resides to execute arbitrary code on the system via uploading malicious Filter Library DLL files in that directory.
CPE | Name | Operator | Version |
---|---|---|---|
forticlient_emergency_management_server | le | 6.2.1 |