An incorrect default permission [CWE-276] vulnerability in FortiClient (Windows) versions 7.0.0 up to and including 7.0.6 and 6.4.0 up to and including 6.4.8 and FortiConverter (Windows) versions 6.2.0 up to and including 6.2.1, 7.0.0 and all versions of 6.0.0 may allow a local authenticated malicious user to tamper with files in the installation folder, if FortiClient or FortiConverter is installed in an insecure folder.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet forticonverter 7.0.0 |
||
fortinet forticonverter 6.2.0 |
||
fortinet forticonverter 6.2.1 |
||
fortinet forticonverter |
||
fortinet forticlient |