CVE-2024-36507
published 2024-11-12CVE-2024-36507: A untrusted search path in Fortinet FortiClientWindows versions 7.4.0, versions 7.2.4 through 7.2.0, versions 7.0.12 through 7.0.0 allows an attacker to run…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
A untrusted search path in Fortinet FortiClientWindows versions 7.4.0, versions 7.2.4 through 7.2.0, versions 7.0.12 through 7.0.0 allows an attacker to run arbitrary code via DLL hijacking and social engineering.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | forticlient | — | — |
| fortinet | forticlient | — | — |
| fortinet | forticlient | >= 7.0.0 < 7.0.13 | 7.0.13 |
| fortinet | forticlient | >= 7.2.0 < 7.2.5 | 7.2.5 |
| fortinet | forticlientwindows | — | — |
| fortinet | forticlientwindows | — | — |
| fortinet | forticlientwindows | 7.0.0 – 7.0.12 | — |
| fortinet | forticlientwindows | 7.2.0 – 7.2.4 | — |
| fortinet | fortinet | — | — |