CVE-2017-7344

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
14/12/2017
Last modified:
20/04/2025

Description

A privilege escalation in Fortinet FortiClient Windows 5.4.3 and earlier as well as 5.6.0 allows attacker to gain privilege via exploiting the Windows "security alert" dialog thereby popping up when the "VPN before logon" feature is enabled and an untrusted certificate chain.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:fortinet:forticlient:*:*:*:*:*:windows:*:* 5.4.3 (including)
cpe:2.3:a:fortinet:forticlient:5.6.0:*:*:*:*:windows:*:*