Exploit Details
Basic Information
| Exploit Title |
Exploit for Improper Access Control in Fortinet Forticlient |
| Exploit ID |
F3F858AE-8A58-571F-AEBA-C4008B4060DB |
| Type |
githubexploit |
| Published |
2025-07-24T22:19:00 |
| Modified |
2025-07-26T00:20:47 |
CVSS Information
| CVSS Score |
6.7 |
| Severity |
MEDIUM |
| Vector |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
AI Analysis
| AI Description |
A vulnerability in FortiClient allows remote users to trick Windows into authenticating with other machines, potentially leading to unauthorized access. |
| AI Severity |
Medium |
| AI Vendor |
Fortinet |
| AI Product |
FortiClient |
| AI Version |
7.0.8.0427 |
CVE Information
Exploit Description
CVE-2024-40586 Windows Coerced Authentication in FortiClient On Windows system, it was found that FortiClient (App version 7.0.8.0427) allow a remote unprivileged user to coerce Windows hosts authenticate to other machines via a named pipe…
View Full Exploit Details
