CVE-2022-26113: 
FortiClient vulnerability analysis and mitigation

An execution with unnecessary privileges vulnerability [CWE-250] was discovered in FortiClientWindows affecting versions 7.0.0 through 7.0.3, 6.4.0 through 6.4.7, 6.2.0 through 6.2.9, and 6.0.0 through 6.0.10. The vulnerability was initially published on June 7, 2022, and was assigned CVE-2022-26113. David Yesland from Rhino Security Labs discovered and reported this vulnerability to Fortinet under responsible disclosure (Fortinet Advisory).

The vulnerability is classified as a privilege management bypass issue that could allow a local attacker to perform arbitrary file writes on the system with SYSTEM privileges. It received a CVSS v3.1 base score of 7.1 (High) from NVD with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H, indicating local access requirements with low attack complexity (NVD).

The vulnerability allows unauthorized execution of code or commands through arbitrary file writes with SYSTEM privileges, potentially leading to severe system compromise (Fortinet Advisory).

Fortinet has released patches to address this vulnerability. Users are advised to upgrade to FortiClientWindows 7.0.4 or above, or FortiClientWindows 6.4.8 or above (Fortinet Advisory).