Vulnerability Details CVE-2026-24018
A UNIX symbolic link (Symlink) following vulnerability in Fortinet FortiClientLinux 7.4.0 through 7.4.4, FortiClientLinux 7.2.2 through 7.2.12 may allow a local and unprivileged user to escalate their privileges to root.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.5%
CVSS Severity
CVSS v3 Score 7.8
Products affected by CVE-2026-24018
-
cpe:2.3:a:fortinet:forticlient:7.2.10
-
cpe:2.3:a:fortinet:forticlient:7.2.11
-
cpe:2.3:a:fortinet:forticlient:7.2.12
-
cpe:2.3:a:fortinet:forticlient:7.2.2
-
cpe:2.3:a:fortinet:forticlient:7.2.3
-
cpe:2.3:a:fortinet:forticlient:7.2.4
-
cpe:2.3:a:fortinet:forticlient:7.2.5
-
cpe:2.3:a:fortinet:forticlient:7.2.8
-
cpe:2.3:a:fortinet:forticlient:7.2.9
-
cpe:2.3:a:fortinet:forticlient:7.4.0
-
cpe:2.3:a:fortinet:forticlient:7.4.1
-
cpe:2.3:a:fortinet:forticlient:7.4.3
-
cpe:2.3:a:fortinet:forticlient:7.4.4