Mulitple Vulnerabilities in FortiClient
FortiClient drivers expose IOCTL that may allow an unprivileged user to get system-level privileges.
Escalation of Privilege
FortiClient v5.2.3 and earlier.
Upgrade to FortiClient v5.2.4.
Thanks to Enrique Nissim and Joaqun Rodrguez Varela from Core Security for responsibly disclosing these issues to Fortinet.