CVE-2019-16152: 
FortiClient vulnerability analysis and mitigation

A Denial of Service (DoS) vulnerability was discovered in FortiClient for Linux version 6.2.1 and below, identified as CVE-2019-16152. The vulnerability allows a low-privileged user to cause FortiClient processes running under root privilege to crash by sending specially crafted IPC client requests to the fctsched process due to improper validation of nanomsg (NVD).

The vulnerability has been assigned a CVSS v3.1 Base Score of 6.5 (Medium) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H. The vulnerability stems from improper input validation (CWE-20) in the nanomsg handling within the fctsched process. The attack requires low privileges and no user interaction to exploit (NVD).

When successfully exploited, this vulnerability can cause FortiClient processes running with root privileges to crash, resulting in a denial of service condition. This impact is particularly significant as it affects core functionality running with elevated privileges (NVD).

Users should upgrade FortiClient for Linux to a version higher than 6.2.1. The vulnerability has been addressed in subsequent releases (Fortiguard).