CVE-2025-25251
7.8HIGHAn Incorrect Authorization vulnerability [CWE-863] in FortiClient Mac 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14 may allow a local attacker to escalate privileges via crafted XPC m
Published: 5/28/2025Updated: 6/4/2025
Description
An Incorrect Authorization vulnerability [CWE-863] in FortiClient Mac 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14 may allow a local attacker to escalate privileges via crafted XPC messages.
AI AnalysisPowered by AI
Affected Products
fortinetforticlient
fortinetforticlient
References
- https://fortiguard.fortinet.com/psirt/FG-IR-25-016Vendor Advisory