Privilege escalation in FortiClient for Mac Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-19-210 Final 1 1 2019-10-29T00:00:00 Current version 2019-10-29T00:00:00 2019-10-29T00:00:00 An Improper Neutralization of Special Elements used in a Command vulnerability in one of FortiClient for Mac OS root processes, may allow a local user of the system on which FortiClient is running to execute unauthorized code as root by bypassing a security check. Escalation of privilege FortiClient for Mac OS version 6.2.1 and below. Please upgrade to FortiClient for Mac OS version 6.2.2 and above. Fortinet is very pleased to thank Lasse Trolle Borup of Langkjaer Cyber Defence for bringing this issue to our attention under responsible disclosure. CVE-2019-17650 4.9 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L/E:F/RL:X/RC:X https://fortiguard.fortinet.com/psirt/FG-IR-19-210 Privilege escalation in FortiClient for Mac Reference>