#VU57074 Path traversal in FortiClientEMS - CVE-2020-15941

Cybersecurity Help s.r.o.

Published: 2021-10-06

Vulnerability identifier: #VU57074

Vulnerability risk: Medium

CVSSv4.0: 5.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2020-15941

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
FortiClientEMS
Other software / Other software solutions

Vendor: Fortinet, Inc

Description

The vulnerability allows a remote attacker to perform directory traversal attacks.

The vulnerability exists due to input validation error when processing directory traversal sequences in the name parameter. A remote authenticated attacker can send a specially crafted HTTP request and add or delete the files of the server.

Mitigation
Install update from vendor's website.

Vulnerable software versions

FortiClientEMS: 6.2.0 - 6.4.1

External links
https://www.fortiguard.com/psirt/FG-IR-20-074

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Path traversal in Fortinet FortiClientEMS