Update functionality may lead to privilege escalation vulnerability

Update functionality may lead to privilege escalation vulnerability Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-22-481 Final 1 1 2023-04-11T00:00:00 Current version 2023-04-11T00:00:00 2023-04-11T00:00:00 A download of code without Integrity check vulnerability [CWE-494] in FortiClientMac may allow a local attacker to escalate their privileges via modifying the installer upon upgrade. None Escalation of privilege FortiClientMac 7.2 all versions are not affectedFortiClientMac version 7.0.0 through 7.0.7FortiClientMac 6.4 all versionsFortiClientMac 6.2 all versionsFortiClientMac 6.0 all versionsFortiClientMac 5.6 all versionsFortiClientMac 5.4 all versionsFortiClientMac 5.2 all versionsFortiClientMac 5.0 all versionsFortiClientMac 4.0 all versions Please upgrade to FortiClientMac version 7.0.8 or above.Please upgrade to FortiClientMac version 7.2.0 or above. Internally discovered and reported by Eric Hu of Fortinet Software Development team. FortiClientMac 7.0.7 FortiClientMac 7.0.6 FortiClientMac 7.0.5 FortiClientMac 7.0.4 FortiClientMac 7.0.3 FortiClientMac 7.0.2 FortiClientMac 7.0.1 FortiClientMac 7.0.0 FortiClientMac 6.4.10 FortiClientMac 6.4.9 FortiClientMac 6.4.8 FortiClientMac 6.4.7 FortiClientMac 6.4.6 FortiClientMac 6.4.5 FortiClientMac 6.4.4 FortiClientMac 6.4.3 FortiClientMac 6.4.2 FortiClientMac 6.4.1 FortiClientMac 6.4.0 FortiClientMac 6.2.9 FortiClientMac 6.2.8 FortiClientMac 6.2.7 FortiClientMac 6.2.6 FortiClientMac 6.2.5 FortiClientMac 6.2.4 FortiClientMac 6.2.3 FortiClientMac 6.2.2 FortiClientMac 6.2.1 FortiClientMac 6.2.0 FortiClientMac 6.0.10 FortiClientMac 6.0.9 FortiClientMac 6.0.8 FortiClientMac 6.0.7 FortiClientMac 6.0.6 FortiClientMac 6.0.5 FortiClientMac 6.0.4 FortiClientMac 6.0.3 FortiClientMac 6.0.2 FortiClientMac 6.0.1 FortiClientMac 5.6.6 FortiClientMac 5.6.5 FortiClientMac 5.6.3 FortiClientMac 5.6.1 FortiClientMac 5.6.0 FortiClientMac 5.4.4 FortiClientMac 5.4.3 FortiClientMac 5.4.2 FortiClientMac 5.4.1 FortiClientMac 5.4.0 FortiClientMac 5.2.6 FortiClientMac 5.2.5 FortiClientMac 5.2.4 FortiClientMac 5.2.3 FortiClientMac 5.2.2 FortiClientMac 5.2.1 FortiClientMac 5.2.0 FortiClientMac 5.0.10 FortiClientMac 5.0.9 FortiClientMac 5.0.8 FortiClientMac 5.0.7 FortiClientMac 5.0.6 FortiClientMac 5.0.5 FortiClientMac 5.0.4 FortiClientMac 5.0.3 FortiClientMac 5.0.2 FortiClientMac 5.0.1 FortiClientMac 5.0.0 FortiClientMac 4.0.3 FortiClientMac 4.0.2 FortiClientMac 4.0.1 FortiClientMac 4.0.0 Update functionality may lead to privilege escalation vulnerability CVE-2023-22635 FortiClientMac-7.0.7 FortiClientMac-7.0.6 FortiClientMac-7.0.5 FortiClientMac-7.0.4 FortiClientMac-7.0.3 FortiClientMac-7.0.2 FortiClientMac-7.0.1 FortiClientMac-7.0.0 FortiClientMac-6.4.10 FortiClientMac-6.4.9 FortiClientMac-6.4.8 FortiClientMac-6.4.7 FortiClientMac-6.4.6 FortiClientMac-6.4.5 FortiClientMac-6.4.4 FortiClientMac-6.4.3 FortiClientMac-6.4.2 FortiClientMac-6.4.1 FortiClientMac-6.4.0 FortiClientMac-6.2.9 FortiClientMac-6.2.8 FortiClientMac-6.2.7 FortiClientMac-6.2.6 FortiClientMac-6.2.5 FortiClientMac-6.2.4 FortiClientMac-6.2.3 FortiClientMac-6.2.2 FortiClientMac-6.2.1 FortiClientMac-6.2.0 FortiClientMac-6.0.10 FortiClientMac-6.0.9 FortiClientMac-6.0.8 FortiClientMac-6.0.7 FortiClientMac-6.0.6 FortiClientMac-6.0.5 FortiClientMac-6.0.4 FortiClientMac-6.0.3 FortiClientMac-6.0.2 FortiClientMac-6.0.1 FortiClientMac-5.6.6 FortiClientMac-5.6.5 FortiClientMac-5.6.3 FortiClientMac-5.6.1 FortiClientMac-5.6.0 FortiClientMac-5.4.4 FortiClientMac-5.4.3 FortiClientMac-5.4.2 FortiClientMac-5.4.1 FortiClientMac-5.4.0 FortiClientMac-5.2.6 FortiClientMac-5.2.5 FortiClientMac-5.2.4 FortiClientMac-5.2.3 FortiClientMac-5.2.2 FortiClientMac-5.2.1 FortiClientMac-5.2.0 FortiClientMac-5.0.10 FortiClientMac-5.0.9 FortiClientMac-5.0.8 FortiClientMac-5.0.7 FortiClientMac-5.0.6 FortiClientMac-5.0.5 FortiClientMac-5.0.4 FortiClientMac-5.0.3 FortiClientMac-5.0.2 FortiClientMac-5.0.1 FortiClientMac-5.0.0 FortiClientMac-4.0.3 FortiClientMac-4.0.2 FortiClientMac-4.0.1 FortiClientMac-4.0.0 6.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L/E:P/RL:X/RC:X https://fortiguard.fortinet.com/psirt/FG-IR-22-481 Update functionality may lead to privilege escalation vulnerability Reference>