An incorrect permission assignment for critical resource vulnerability [CWE-732] in FortiClient for Linux version 6.0.8 and below, 6.2.9 and below, 6.4.7 and below, 7.0.2 and below may allow an unauthenticated attacker to access sensitive information in log files and directories via symbolic links.
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-21-232 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: fortinet
Published: 2022-05-11T14:25:10
Updated: 2022-05-11T14:25:10
Reserved: 2021-11-23T00:00:00
Link: CVE-2021-44167
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-05-11T15:15:08.657
Modified: 2022-05-19T02:47:23.603
Link: CVE-2021-44167
JSON object: View
Redhat Information
No data.
CWE