CVE-2020-9291
MEDIUMFortiClient < 6.0.9 - Privilege Escalation via Temporary File Symbolic Link Attack
Title source: llmDescription
An Insecure Temporary File vulnerability in FortiClient for Windows 6.2.1 and below may allow a local user to gain elevated privileges via exhausting the pool of temporary file names combined with a symbolic link attack.
References (2)
Core 2
Core References
Broken Link x_refsource_confirm
https://fortiguard.com/psirt/FG-IR-20-040
Vendor Advisory
https://www.fortiguard.com/psirt/FG-IR-20-040
Scores
CVSS v3
6.3
EPSS
0.0011
EPSS Percentile
29.6%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-668
Status
published
Products (1)
fortinet/forticlient
< 6.0.9
Published
Jun 01, 2020
Tracked Since
Feb 18, 2026