Fortinet has introduced patches to tackle a critical security flaw impacting FortiClientLinux that could be exploited to realize arbitrary code execution.
Tracked as CVE-2023-45590, the vulnerability carries a CVSS score of 9.4 out of a maximum of 10.
“An Inappropriate Control of Era of Code (‘Code Injection’) vulnerability [CWE-94] in FortiClientLinux may possibly permit an unauthenticated attacker to execute arbitrary code through tricking a FortiClientLinux user into checking out a malicious internet site,” Fortinet reported in an advisory.
Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.
Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).
➤ Activate Your Coupon Code
The shortcoming, which has been described as a situation of remote code execution thanks to a “risky nodejs configuration,” impacts the pursuing versions –
- FortiClientLinux variations 7..3 by way of 7..4 and 7..6 via 7..10 (Improve to 7..11 or over)
- FortiClientLinux variation 7.2. (Enhance to 7.2.1 or higher than)
Security researcher CataLpa from Dbappsecurity has been credited with finding and reporting the vulnerability.
Fortinet’s security patches for April 2024 also handle an issue with FortiClientMac installer that could also guide to code execution (CVE-2023-45588 and CVE-2024-31492, CVSS scores: 7.8).
Also resolved is a FortiOS and FortiProxy bug that could leak administrator cookies in specific scenarios (CVE-2023-41677, CVSS score: 7.5).
When there is no evidence of any of the flaws being exploited in the wild, it can be suggested that customers preserve their devices up-to-date to mitigate potential threats.
Observed this post interesting? Follow us on Twitter and LinkedIn to examine more exceptional material we post.
Some parts of this posting are sourced from:
thehackernews.com