Vulnerability Database

296,746

Total vulnerabilities in the database

CVE-2024-36507

A untrusted search path in Fortinet FortiClientWindows versions 7.4.0, versions 7.2.4 through 7.2.0, versions 7.0.12 through 7.0.0 allows an attacker to run arbitrary code via DLL hijacking and social engineering.

  • Published: Nov 12, 2024
  • Updated: May 4, 2025
  • CVE: CVE-2024-36507
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.8
  • AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWEs:

Software From Fixed in
fortinet / forticlient 7.2.0 7.2.5
fortinet / forticlient 7.0.0 7.0.13
fortinet / forticlient 7.4.0 7.4.0.x