cbcvebase.
CVE-2025-62676
published 2026-02-10

CVE-2025-62676: An Improper Link Resolution Before File Access ('Link Following') vulnerability [CWE-59] vulnerability in Fortinet FortiClientWindows 7.4.0 through 7.4.4…

high7.1CVSS 3.1
AVLACLPRLUINSUCNIHAH
An Improper Link Resolution Before File Access ('Link Following') vulnerability [CWE-59] vulnerability in Fortinet FortiClientWindows 7.4.0 through 7.4.4, FortiClientWindows 7.2.0 through 7.2.12, FortiClientWindows 7.0 all versions may allow a local low-privilege attacker to perform an arbitrary file write with elevated permissions via crafted named pipe messages.

Affected

8 ranges
VendorProductVersion rangeFixed in
fortinetforticlient
fortinetforticlient>= 7.0.0 < 7.2.137.2.13
fortinetforticlient>= 7.4.0 < 7.4.57.4.5
fortinetforticlientwindows
fortinetforticlientwindows7.0.0 – 7.0.14
fortinetforticlientwindows7.2.0 – 7.2.12
fortinetforticlientwindows7.4.0 – 7.4.4
fortinetfortinet