An issue was discovered in G-Data before 25.5.9.25 using Symbolic links, it is possible to abuse the infected-file restore mechanism to achieve arbitrary write that leads to elevation of privileges.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27172
Reference (s):
- https://www.fortiguard.com/zeroday/FG-VD-20-120