Rewterz Threat Advisory – CVE-2020-11978 – Apache Airflow Command Injection

June 18, 2021

Rewterz Threat Advisory –Multiple Google Chrome Vulnerabilities

June 18, 2021

Rewterz Threat Advisory – CVE-2021-26089 – Fortinet FortiClient Zero-Day Vulnerability

June 18, 2021

Severity

High

Analysis Summary

CVE-2021-26089

This vulnerability allows attackers to escalate privileges on affected installations of Fortinet FortiClient on Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

The specific flaw exists within the FortiClient installer. The issue lies in the lack of proper permissions set on log files created by the installer. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of root.

Impact

Code Execution
Privilege Escalation

Affected Vendors

Fortinet

Affected Products

FortiClient

Remediation

Refer to Fortinet Advisory for patch, upgrade or suggested workaround information

https://www.zerodayinitiative.com/advisories/ZDI-21-693/

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

New ‘Power Parasites’ Phishing Campaign Targets Energy Firms and Leading Brands – Active IOCs

Stealc Information Stealer Malware – Active IOCs

DslogdRAT Deployed via Ivanti Connect Secure Exploit – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – CVE-2020-11978 – Apache Airflow Command Injection

Rewterz Threat Advisory –Multiple Google Chrome Vulnerabilities

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.